/plushcap/analysis/cloudflare/armed-to-boot

Armed to Boot: an enhancement to Arm's Secure Boot chain

What's this blog post about?

Cloudflare, in collaboration with Ampere Computing, has developed a method to secure servers against malicious firmware attacks at the manufacturer level using cryptography and hardware. The process involves fusing keys into silicon during manufacturing and then requiring all subsequent software updates to be signed by those keys. This prevents attackers from installing unauthorized firmware on the server's Baseboard Management Controller (BMC).

Company
Cloudflare

Date published
Jan. 25, 2023

Author(s)
Derek Chamorro, Ryan Chow

Word count
2528

Language
English

Hacker News points
1


By Matt Makai. 2021-2024.