From mboxrd@z Thu Jan 1 00:00:00 1970 Content-Type: multipart/mixed; boundary="===============0829493305355204951==" MIME-Version: 1.0 From: Tal Lubko Subject: Re: BIOS Guard Security Configuration Date: Thu, 28 Oct 2021 19:09:39 +0000 Message-ID: <428559990.675221.1635448179562@mail.yahoo.com> In-Reply-To: List-Id: To: chipsec@lists.01.org --===============0829493305355204951== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Document #557274 in Intel RDC On Thursday, October 28, 2021, 09:44:53 PM GMT+3, Frinzell, Aaron wrote: = = = =C2=A0 = Hi Tal, = =C2=A0 = Are you able to share the link to this document or the source? = =C2=A0 = Thanks, = =C2=A0 = Aaron = =C2=A0 = From: Tal Lubko = Sent: Thursday, October 28, 2021 12:42 PM To: chipsec(a)lists.01.org Subject: [chipsec] BIOS Guard Security Configuration = =C2=A0 = Hi = =C2=A0 = I'm looking at "Skylake and Kaby Lake Platform Secure Configuration Specifi= cation". = It has a section named "BIOS Guard Security Configuration" with several rec= ommendations. = For example:=C2=A0Test "BIOS Guard Lock" (this is MSR bit). = Why chipsec doesn't verify this bit? = =C2=A0 = Regards, = Tal = =C2=A0 =20 --===============0829493305355204951== Content-Type: text/html MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="attachment.htm" PGh0bWw+PGhlYWQ+PC9oZWFkPjxib2R5PjxkaXYgY2xhc3M9InlkcGU0MWFhOGFleWFob28tc3R5 bGUtd3JhcCIgc3R5bGU9ImZvbnQtZmFtaWx5OkhlbHZldGljYSBOZXVlLCBIZWx2ZXRpY2EsIEFy aWFsLCBzYW5zLXNlcmlmO2ZvbnQtc2l6ZToxNnB4OyI+PGRpdj48L2Rpdj4KICAgICAgICA8ZGl2 IGRpcj0ibHRyIiBkYXRhLXNldGRpcj0iZmFsc2UiPkRvY3VtZW50ICM8c3Bhbj41NTcyNzQgaW4g SW50ZWwgUkRDPC9zcGFuPjwvZGl2PjxkaXY+PGJyPjwvZGl2PgogICAgICAgIAogICAgICAgIDwv ZGl2PjxkaXYgaWQ9InlkcDEyNDU3YzF5YWhvb19xdW90ZWRfNTQ3MDIzMDk3NCIgY2xhc3M9Inlk cDEyNDU3YzF5YWhvb19xdW90ZWQiPgogICAgICAgICAgICA8ZGl2IHN0eWxlPSJmb250LWZhbWls eTonSGVsdmV0aWNhIE5ldWUnLCBIZWx2ZXRpY2EsIEFyaWFsLCBzYW5zLXNlcmlmO2ZvbnQtc2l6 ZToxM3B4O2NvbG9yOiMyNjI4MmE7Ij4KICAgICAgICAgICAgICAgIAogICAgICAgICAgICAgICAg PGRpdj4KICAgICAgICAgICAgICAgICAgICBPbiBUaHVyc2RheSwgT2N0b2JlciAyOCwgMjAyMSwg MDk6NDQ6NTMgUE0gR01UKzMsIEZyaW56ZWxsLCBBYXJvbiAmbHQ7YWFyb24uZnJpbnplbGxAaW50 ZWwuY29tJmd0OyB3cm90ZToKICAgICAgICAgICAgICAgIDwvZGl2PgogICAgICAgICAgICAgICAg PGRpdj48YnI+PC9kaXY+CiAgICAgICAgICAgICAgICA8ZGl2Pjxicj48L2Rpdj4KICAgICAgICAg ICAgICAgIDxkaXY+PGRpdiBpZD0ieWRwMTI0NTdjMXlpdjEyMjg4MDQ4NTIiPgoKIAogCgoKPGRp dj4KPGRpdiBjbGFzcz0ieWRwMTI0NTdjMXlpdjEyMjg4MDQ4NTJXb3JkU2VjdGlvbjEiPgo8cCBj bGFzcz0ieWRwMTI0NTdjMXlpdjEyMjg4MDQ4NTJNc29Ob3JtYWwiPiAmbmJzcDs8L3A+IAo8cCBj bGFzcz0ieWRwMTI0NTdjMXlpdjEyMjg4MDQ4NTJNc29Ob3JtYWwiPkhpIFRhbCw8L3A+IAo8cCBj bGFzcz0ieWRwMTI0NTdjMXlpdjEyMjg4MDQ4NTJNc29Ob3JtYWwiPiAmbmJzcDs8L3A+IAo8cCBj bGFzcz0ieWRwMTI0NTdjMXlpdjEyMjg4MDQ4NTJNc29Ob3JtYWwiPkFyZSB5b3UgYWJsZSB0byBz aGFyZSB0aGUgbGluayB0byB0aGlzIGRvY3VtZW50IG9yIHRoZSBzb3VyY2U/PC9wPiAKPHAgY2xh c3M9InlkcDEyNDU3YzF5aXYxMjI4ODA0ODUyTXNvTm9ybWFsIj4gJm5ic3A7PC9wPiAKPHAgY2xh c3M9InlkcDEyNDU3YzF5aXYxMjI4ODA0ODUyTXNvTm9ybWFsIj5UaGFua3MsPC9wPiAKPHAgY2xh c3M9InlkcDEyNDU3YzF5aXYxMjI4ODA0ODUyTXNvTm9ybWFsIj4gJm5ic3A7PC9wPiAKPHAgY2xh c3M9InlkcDEyNDU3YzF5aXYxMjI4ODA0ODUyTXNvTm9ybWFsIj5BYXJvbjwvcD4gCjxwIGNsYXNz PSJ5ZHAxMjQ1N2MxeWl2MTIyODgwNDg1Mk1zb05vcm1hbCI+ICZuYnNwOzwvcD4gCjxkaXY+Cjxk aXYgc3R5bGU9ImJvcmRlcjpub25lO2JvcmRlci10b3A6c29saWQgI0UxRTFFMSAxLjBwdDtwYWRk aW5nOjMuMHB0IDBpbiAwaW4gMGluOyI+CjxwIGNsYXNzPSJ5ZHAxMjQ1N2MxeWl2MTIyODgwNDg1 Mk1zb05vcm1hbCI+PGI+RnJvbTo8L2I+IFRhbCBMdWJrbyAmbHQ7dGFsbHVia29AeWFob28uY29t Jmd0OyA8YnI+CjxiPlNlbnQ6PC9iPiBUaHVyc2RheSwgT2N0b2JlciAyOCwgMjAyMSAxMjo0MiBQ TTxicj4KPGI+VG86PC9iPiBjaGlwc2VjQGxpc3RzLjAxLm9yZzxicj4KPGI+U3ViamVjdDo8L2I+ IFtjaGlwc2VjXSBCSU9TIEd1YXJkIFNlY3VyaXR5IENvbmZpZ3VyYXRpb248L3A+IAo8L2Rpdj4K PC9kaXY+CjxwIGNsYXNzPSJ5ZHAxMjQ1N2MxeWl2MTIyODgwNDg1Mk1zb05vcm1hbCI+ICZuYnNw OzwvcD4gCjxkaXY+CjxkaXY+CjxkaXY+CjxkaXY+CjxwIGNsYXNzPSJ5ZHAxMjQ1N2MxeWl2MTIy ODgwNDg1Mk1zb05vcm1hbCI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMi4wcHQ7Zm9udC1mYW1p bHk6c2Fucy1zZXJpZjsiPkhpPC9zcGFuPjwvcD4gCjwvZGl2Pgo8ZGl2Pgo8cCBjbGFzcz0ieWRw MTI0NTdjMXlpdjEyMjg4MDQ4NTJNc29Ob3JtYWwiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTIu MHB0O2ZvbnQtZmFtaWx5OnNhbnMtc2VyaWY7Ij4gJm5ic3A7PC9zcGFuPjwvcD4gCjwvZGl2Pgo8 ZGl2Pgo8cCBjbGFzcz0ieWRwMTI0NTdjMXlpdjEyMjg4MDQ4NTJNc29Ob3JtYWwiPjxzcGFuIHN0 eWxlPSJmb250LXNpemU6MTIuMHB0O2ZvbnQtZmFtaWx5OnNhbnMtc2VyaWY7Ij5JJ20gbG9va2lu ZyBhdCAiU2t5bGFrZSBhbmQgS2FieSBMYWtlIFBsYXRmb3JtIFNlY3VyZSBDb25maWd1cmF0aW9u IFNwZWNpZmljYXRpb24iLjwvc3Bhbj48L3A+IAo8L2Rpdj4KPC9kaXY+CjxkaXY+CjxwIGNsYXNz PSJ5ZHAxMjQ1N2MxeWl2MTIyODgwNDg1Mk1zb05vcm1hbCI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6 ZToxMi4wcHQ7Zm9udC1mYW1pbHk6c2Fucy1zZXJpZjsiPkl0IGhhcyBhIHNlY3Rpb24gbmFtZWQg IkJJT1MgR3VhcmQgU2VjdXJpdHkgQ29uZmlndXJhdGlvbiIgd2l0aCBzZXZlcmFsIHJlY29tbWVu ZGF0aW9ucy48L3NwYW4+PC9wPiAKPC9kaXY+CjxkaXY+CjxwIGNsYXNzPSJ5ZHAxMjQ1N2MxeWl2 MTIyODgwNDg1Mk1zb05vcm1hbCI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMi4wcHQ7Zm9udC1m YW1pbHk6c2Fucy1zZXJpZjsiPkZvciBleGFtcGxlOiZuYnNwO1Rlc3QgIkJJT1MgR3VhcmQgTG9j ayIgKHRoaXMgaXMgTVNSIGJpdCkuPC9zcGFuPjwvcD4gCjwvZGl2Pgo8ZGl2Pgo8cCBjbGFzcz0i eWRwMTI0NTdjMXlpdjEyMjg4MDQ4NTJNc29Ob3JtYWwiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6 MTIuMHB0O2ZvbnQtZmFtaWx5OnNhbnMtc2VyaWY7Ij5XaHkgY2hpcHNlYyBkb2Vzbid0IHZlcmlm eSB0aGlzIGJpdD88L3NwYW4+PC9wPiAKPC9kaXY+CjxkaXY+CjxwIGNsYXNzPSJ5ZHAxMjQ1N2Mx eWl2MTIyODgwNDg1Mk1zb05vcm1hbCI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMi4wcHQ7Zm9u dC1mYW1pbHk6c2Fucy1zZXJpZjsiPiAmbmJzcDs8L3NwYW4+PC9wPiAKPC9kaXY+CjxkaXY+Cjxw IGNsYXNzPSJ5ZHAxMjQ1N2MxeWl2MTIyODgwNDg1Mk1zb05vcm1hbCI+PHNwYW4gc3R5bGU9ImZv bnQtc2l6ZToxMi4wcHQ7Zm9udC1mYW1pbHk6c2Fucy1zZXJpZjsiPlJlZ2FyZHMsPC9zcGFuPjwv cD4gCjwvZGl2Pgo8ZGl2Pgo8cCBjbGFzcz0ieWRwMTI0NTdjMXlpdjEyMjg4MDQ4NTJNc29Ob3Jt YWwiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTIuMHB0O2ZvbnQtZmFtaWx5OnNhbnMtc2VyaWY7 Ij5UYWw8L3NwYW4+PC9wPiAKPC9kaXY+CjxwIGNsYXNzPSJ5ZHAxMjQ1N2MxeWl2MTIyODgwNDg1 Mk1zb05vcm1hbCI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMi4wcHQ7Zm9udC1mYW1pbHk6c2Fu cy1zZXJpZjsiPiAmbmJzcDs8L3NwYW4+PC9wPiAKPC9kaXY+CjwvZGl2Pgo8L2Rpdj4KPC9kaXY+ Cgo8L2Rpdj48L2Rpdj4KICAgICAgICAgICAgPC9kaXY+CiAgICAgICAgPC9kaXY+PC9ib2R5Pjwv aHRtbD4= --===============0829493305355204951==--