Mastodawn

Stuart Yoder explains why standard assessment tools like #LFVS, #HSI, and #CHIPSEC struggle on #ARM systems, where diverse hardware designs make direct inspection unreliable. The lack of consistent, inspectable security primitives leaves significant blind spots for teams trying to validate platform security.

🔗 Video, description & slides:
https://cfp.3mdeb.com/developers-vpub-0xc-2024/talk/RMEWFV/

Security assessment on Arm platforms Developers vPub 0xC

Security assessment tooling such as LFVS HSI and Chipsec rely on standard security mechanisms that can be directly inspected by a tool. Due to the diversity of Arm-based hardware platforms doing direct inspection is difficult. This presentation discusses work underway to evaluate how security assessment could be done on Arm platforms and work towards a solution.

Show thread

Detlev Zundel [Team Human]Nov 18, 2023

Added an update to the #blog entry on how I found out that a BIOS upgrade erased my enrolled MOK key 😬 and how DBX entries get pushed to GNU/Linux systems via the #linuxfoundation and #lfvs

https://blog.lazy-evaluation.net/posts/linux/switching-to-secureboot.html

Switching on Secure Boot in Debian

My main desktop machine is an AMD Ryzen-2400G on an ASUS PRIME B350M-A motherboard. It came with secure boot disabled and as the first action I installed Debian on it. Back in early 2019, Debian 10

Dzu's Blog

Denzil Ferreira Aug 26, 2023

Been thinking to get a USB fingerprint reader for a mini desktop PC I have running Fedora 38. Any recommendations?

#linux #lfvs #biometric #authentication

jtlinux Apr 30, 2019

Flatpak updates and firmware updates in GNOME Software. Thanks, #LFVS!