Yet Another Major Security Deficiency in UEFI

Dr. Roy Schestowitz

2015-05-27 11:03:53 UTC
Modified: 2015-05-27 11:03:53 UTC

Another reason to reject UEFI: system compromise before boot sequence starts (e.g. GNU/Linux)

UEFI

Summary: UEFI is inherently insecure, more so than the alternatives which it strives to replace, including Free/libre ones

INTEL'S UEFI has been marketed as 'security' because of "Restricted Boot", which basically gives a bunch of companies like Microsoft control over one's computer. Microsoft works closely with the NSA and the NSA already spoke about compromise at boot time. UEFI enables remote bricking of PCs -- a subject that we covered here before, e.g. in:

There is a post titled "UEFI backdoor allows root exploit in Linux" which UEFI apologist and developer Matthew Garrett responded to not exactly with refutation, only the insistence that it is not the "backdoor you are looking for". To quote: "And that's what Dmytro has done - he's written code that sits in that hidden area of RAM and can be triggered to modify the state of the running OS. But he's modified his own firmware in order to do that, which isn't something that's possible without finding an existing vulnerability in either the OS or (or more recently, and) the firmware. It's an excellent demonstration that what we knew to be theoretically possible is practically possible, but it's not evidence of such a backdoor being widely deployed."

Maybe not yet. We're talking about and dealing with imperialistic espionage agencies that go as far as putting back doors in the firmware of just about every hard drive.

We really need to stop referring to UEFI as a security enhancement. This is far from the first time security issues are found in UEFI, which is complicated, proprietary, patents-encumbered and relatively immature.

Computers with UEFI should be appropriately labeled (warning labels), just like foods with genetically-modified ingredients or packets of cigarettes. ⬆

Recent Techrights' Posts

Fourth Estate or Missing Fourth Pillar: "The term Fourth Estate or fourth power refers to the press and news media in explicit capacity of reporting the News" -Wikipedia on Fourth Estate
LLMs Are Not a Form of Intelligence (They Never Will Be): Butterflies are smarter than "chatGPT"
Business Software Alliance (BSA), Microsoft, and AstroTurfing Online (Also in the Trump Administration Groomed by BSA and Microsoft): Has Washington become openWashington? Where the emphasis is openwashing rather than Open(Source)Washington?
Windows at 1%: Quit throwing taxpayers' money at Microsoft, especially when it fails to fulfil basic needs and instead facilitates espionage by foreign and very hostile nations
Technology: rights or responsibilities? - Part VII: By Dr. Andy Farnell
BetaNews is Still 'Shitposting' About Trump and Porn (Two Analysers Say This 'Shitposting' Comes From LLMs): Probably some SEO garbage, prompted with words like "porn" and "trump" to stitch together other people's words
Market Share of Vista 11 Said to be Going Down in Europe: one plausible explanation is that gs.statcounter.com is actually misreporting the share of Vista 11, claiming that it's higher than it really is
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Sunday, November 17, 2024: IRC logs for Sunday, November 17, 2024
Links 17/11/2024: Pakistan Broke, Tyson 'Crashes' or Knocks Over Netflix: Links for the day
Gemini Links 17/11/2024: Nachtigall Planned, Exodus at Twitter: Links for the day
Links 17/11/2024: China's Diplomacy and Gazprom Setback: Links for the day
Sudan Has Reached a State of Android Domination (93% Market Share, All-Time High According to statCounter): countries at war buy fewer laptops?
[Meme] Just Do It?: 'FSF' Europe (Microsoft) and FSF
Microsoft Front Groups Against the FSF, Home of GPL, GNU, and Free Software: Much of the money (not all of it) comes from the criminals at Redmond
Centralisation is Dooming the Web, RSS is One Workaround (But Not "Planets"): At least Gemini Protocol rejects centralisation
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, November 16, 2024: IRC logs for Saturday, November 16, 2024
Links 17/11/2024: Wars, Bailouts, and Censorship: Links for the day
Gemini Links 17/11/2024: Changing Interests and HamsterCMS: Links for the day
Links 16/11/2024: Twitter (X) Exodus Continues, Social Control Media Sanctions Spread Further: Links for the day
If You Donate to the FSFE, You Are Funding a Microsoft Front Group Inside Europe: FSFE has a new "Sugar Daddy"
Wikileaks is Now Stuck Under the Clutches of Donald Trump (via Elon Musk): The same Trump administration that was blackmailing Assange and also schemed to torture/assassinate him
IPKat's Annsley Merelle Ward Spreading the Same Old Lies and Shameless Propaganda to Promote Software Patents in Europe (i.e. the Usual... and She's Not Even a Coder): People are quick to point out that the cited survey is very inherently biased
Windows in Azerbaijan: Down From Around 99% to Around 20%: In the past two years Microsoft could barely keep above 20%
Microsoft's Vanity Vapourware ('Lame Duck' Product for Trump and Biden Bailouts) Again "Discontinued": Microsoft cannot keep a dying unit that makes almost no sales alive just for mere prospects of a bailout (which falls through because even the military turns it down)
Links 16/11/2024: FTC Investigates Abusive Monopolist Microsoft for "Clown Computing" Market Abuses, General Motors Mass Layoffs: Links for the day
When Articles About Linux Foundation Are LLM SPAM (Slop) From Publishers Paid by the Linux Foundation: This is a corruption of the Web
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Friday, November 15, 2024: IRC logs for Friday, November 15, 2024
Claim That IBM Canada Had Mass Layoffs Just Hours Ago: Nothing in the media, as usual
Gemini Links 16/11/2024: Starting Afresh, Community-to-community Networks: Links for the day