Re: SHA-1 MBR

grub-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SHA-1 MBR

From:	Isaac Dupree
Subject:	Re: SHA-1 MBR
Date:	Fri, 20 Feb 2009 20:02:12 -0500
User-agent:	KMail/1.10.3 (Linux/2.6.27-11-generic; KDE/4.1.3; x86_64; ; )

Jan Alsenz wrote:
> Yes, that was my point. You need a trusted first step.
> But the only thing besides a TPM, that can be used for this is the BIOS,
> which can be flashed.
> And even, if we assume, that we can construct a BIOS that only boots if the
> MBR hash matches and can not be flashed prior to this point, there are
> still two points missing:
> - After the system has started, the BIOS could be flashed. This is a very
> possible scenario in a multi user environment.
> - They could take out the disk and put it in another machine, tamper with
> the boot code and switch it on. And all your protection is gone.
>   Ok, you could try to put a needed key in the BIOS too, but then we're
> back to problem one - and the BIOS can not check if a request for the key
> is valid. I'm not even sure, if something in the BIOS can be read
> protected.

BIOS could be in ROM, un-flashable, including hash/keys and all!  Refuse to 
boot if the hash doesn't match!  Admittedly this poses some limitations on 
whether the system can be upgraded, depending how sophisticated you want to 
be.

[Prev in Thread]

Current Thread

[Next in Thread]

SHA-1 MBR, phcoder, 2009/02/20
- Re: SHA-1 MBR, Jan Alsenz, 2009/02/20
  - Re: SHA-1 MBR, phcoder, 2009/02/20
    - Re: SHA-1 MBR, Jan Alsenz, 2009/02/20
    - Re: SHA-1 MBR, Isaac Dupree <=
    - Re: SHA-1 MBR, Javier Martín, 2009/02/20
    - Re: SHA-1 MBR, phcoder, 2009/02/21
    - Re: SHA-1 MBR, Jan Alsenz, 2009/02/21
    - Re: SHA-1 MBR, phcoder, 2009/02/21
    - Re: SHA-1 MBR, phcoder, 2009/02/21
- Re: SHA-1 MBR, Alex Besogonov, 2009/02/20

Prev by Date: Re: SHA-1 MBR
Next by Date: Re: SHA-1 MBR
Previous by thread: Re: SHA-1 MBR
Next by thread: Re: SHA-1 MBR
Index(es):
- Date
- Thread