Conference logo

Beyond Anti Evil Maid - Matthew Garrett

32c3 - Security - 12/29/2015

In 2011, Joanna Rutkowska unveiled an easy-to-use tool for mitigating many attacks on system boot chains by using the TPM - the Anti Evil Maid. Unfortunately the implementation was difficult to incorporate into normal system boot in a secure manner - anybody able to observe a user could recreate the secret. This presentation describes a method to allow systems to prove their identity to the user without making it trivial for attackers to mimic a secure boot and extract secrets from the user, and why the state of modern hardware means this may still not be enough.

Share this talk:
https://c3stream.de/Info?guid=b5d1079a-7d72-45b1-8328-e5c3e60944c1