cancel
Showing results for 
Search instead for 
Did you mean: 

Don't let manufactures lock you out of BIOS modding! Let them know!

danwat1234
Level 9
I heard about some draft or proposal about how BIOSes are vulnerable to local attacks, making the computer compromised.
I haven't read all of the huge PDF file yet but I know that closing down BIOSes on devices so that you can't flash your own BIOS on your x86 or video card, HDD/SDD/optical/mobile device hinders innovation, freedom of choice, creativity and learning (say if you want to learn about BIOS modding). You might not be able to even read off the BIOS, not sure.
Imagine having to update the BIOS remotely by linking with a server somehow and with encryption.
Hopefully if this does pass, we will find a way to emulate the server or something and inject BIOS code somehow to our own computers. According to the PDF you could take out the flash chip and replace it with one that has the modded BIOS in it (yea, sure).

Here is the PDF.
NIAP_CCEVS: U.S. Government Approved Protection Profile - Protection Profile for BIOS Update for PC ...

Email niap@niap-ccevs.org and(or?) pp-comments@niap-ccevs.org about your concerns and spread this around!
In my email to them I mentioned how manufactures often don't develop features that people want or bug fixes BIOSes because they don't want the development costs or don't think it's important. I made a few examples.
4,516 Views
3 REPLIES 3

Zygomorphic
Level 17
This seems to me to be similar to the push by MS to prevent LINUX from being installed under the guise of "security". The "Secure Boot" system wasn't about securing the kernel loader, it was about shutting alternate OS's out of the system. The question remains, since I haven't had a chance to read the entire thing, is whether they are trying to prevent the user from installing a new BIOS, or requiring the ability to have security in the BIOS (which is probably required for certain government applications).
I am disturbed because I cannot break my system...found out there were others trying to cope! We have a support group on here, if your system will not break, please join!
http://rog.asus.com/forum/group.php?groupid=16
We now have 178 people whose systems will not break! Yippee! 🙂
LINUX Users, we have a group!
http://rog.asus.com/forum/group.php?groupid=23

joskam
Level 7
To be honest, I've always been a bit surprised that BIOS flashing almost never requires a physical action such as flipping a switch before programming.

If a program from the vendor can flash my BIOS, the next virus or other malware can do so as well. I really would prefer some hardware mechanism that prevents the flashing of firmware or BIOS. Of course, that mechanism must be under my own control.

I wouldn't mind seeing a little physical switch under the battery or something, provided that I am in control. If it becomes a vendor-controlled "feature", then it is little different from a set of digital handcuffs.
I am disturbed because I cannot break my system...found out there were others trying to cope! We have a support group on here, if your system will not break, please join!
http://rog.asus.com/forum/group.php?groupid=16
We now have 178 people whose systems will not break! Yippee! 🙂
LINUX Users, we have a group!
http://rog.asus.com/forum/group.php?groupid=23