Armed to Boot: an enhancement to Arm's Secure Boot chain
What's this blog post about?
Cloudflare, in collaboration with Ampere Computing, has developed a method to secure servers against malicious firmware attacks at the manufacturer level using cryptography and hardware. The process involves fusing keys into silicon during manufacturing and then requiring all subsequent software updates to be signed by those keys. This prevents attackers from installing unauthorized firmware on the server's Baseboard Management Controller (BMC).
Company
Cloudflare
Date published
Jan. 25, 2023
Author(s)
Derek Chamorro, Ryan Chow
Word count
2528
Language
English
Hacker News points
1