Chip-level vulnerability assessment using CHIPSEC and LuvOS

Presented at Kernelcon 2019, April 5, 2019, 1 p.m. (50 minutes)

ardware level vulnerability assessment is becoming increasingly important with the increase of state-sponsored threats. The ability to perform chip-level vulnerability assessments provides valuable insights for security managers, specifically for critical assets. This presentation demonstrates the value of using CHIPSEC and LuvOS to conduct chip-level vulnerability assessments. The presentation will provide a demonstration of the various functions of CHIPSEC and LuvOS and will also examine how to install and use CHIPSEC for the purpose of hardware, firmware, and chip-level vulnerability assessments.

Presenters:

• Dr. Jeffrey (Jeff) Struik
  Dr. Struik has 10+ years of cybersecurity experience primarily in the defense industry. His primary interests are embedded systems security, board-level security, and sharing knowledge with future cybersecurity professionals.

Links:

• https://2019.kernelcon.org/agenda#chipsec

Similar Presentations:

• HushCon East 2019 / Chip Decapping on a Budget
• DerbyCon 2.0 Reunion (2012) / Security Vulnerability Assessments – Process and Best Practices
• DEF CON 22 (2014) / Summary of Attacks Against BIOS and Secure Boot