UEFI Plugfest March

Similar documents
Fall 2017 UEFI Plugfest Agenda

UEFI Forum Update. UEFI Spring Plugfest March 29-31, 2016 Presented by Dong Wei (The UEFI Forum)

Spring 2018 UEFI Plugfest

UEFI What is it? Spring 2017 UEFI Seminar and Plugfest March 27-31, 2017 Presented by Dong Wei (ARM) presented by. Updated

UEFI in Arm Platform Architecture

The Role UEFI Technologies Play in ARM Platform Architecture

Hardware Prototyping Using a Windows-Hosted UEFI environment

UEFI State of the Union Ecosystem enabling update

Tailoring TrustZone as SMM Equivalent

Firmware Test Suite - Uses, Development, Contribution and GPL

System Firmware and Device Firmware Updates using Unified Extensible Firmware Interface (UEFI) Capsules

ARM Trusted Firmware ARM UEFI SCT update

Using the UEFI Shell. October 2010 UEFI Taipei Plugfest Insyde Software

UEFI ARM Update. UEFI PlugFest March 18-22, 2013 Andrew N. Sloss (ARM, Inc.) presented by

UEFI Security Response Team (USRT)

Manufacturing Tools in the UEFI Secure Boot Environment

General Firmware Overview of Recommendations for Window OS

Intel Transparent Computing

Standardized Firmware for ARMv8 based Volume Servers

Implementing Secure Boot: A Refresher on Key & Database Configuration

"Last Mile" Barriers to Removing Legacy BIOS

Arm Server Ready. Dong Wei

Solutions for the Intel Platform Innovation Framework for EFI July 26, Slide 1

UEFI updates, Secure firmware and Secure Services on Arm

Debugging under Unified Extensible Firmware Interface (UEFI): Addressing DXE Driver Challenges

Attacking and Defending the Platform

Event Information Packet

UEFI and the Security Development Lifecycle

UEFI and IoT: Best Practices in Developing IoT Firmware Solutions

ARM Server s Firmware Security

System Prep Applications A Powerful New Feature in UEFI 2.5

An Introduction to Platform Security

UEFI ARM Update. Presented by Mitch Ishihara. UEFI Plugfest October presented by

AMD Security and Server innovation

Microsoft UEFI Certification Authority

Strengthening the Chain of Trust. Kevin Lane HP Jeff Bobzin Insyde Software

PreBoot Provisioning Solutions with UEFI

UEFI TECHNICAL UPDATES & PLATFORM INNOVATIONS. Dong Wei - HP 魏东 Vincent Zimmer - Intel

Introduction to Intel Boot Loader Development Kit (Intel BLDK) Intel SSG/SSD/UEFI

The TPM 2.0 specs are here, now what?

UEFI Manageability and REST Services

Designing Interoperability into IA-64 Systems: DIG64 Guidelines

AMI Product Catalog. A Leader in Storage and Computing Innovations Worldwide

ARM64 Server RAS Solutions. Jonathan (Zhixiong) Zhang Cavium Inc.

Embedded BIOS. Features and Board Support Packages congatec AG 1

Past, Present, and Future Justin Johnson Senior Principal Firmware Engineer

Updates on Server Base System Architecture and Boot Requirements. Dong Wei

Firmware Implementation Techniques to Achieve Windows 8 Fast Boot

ServerReady and Open Standards Accelerating Delivery

Embedded Base Boot Requirements. Dong Wei

UEFI Test Tools For Linux Developers

Impact of platform firmware on Linux kernel. Megha Dey, Sai Praneeth Prakhya Intel Open Source Technology Center

Firmware. OSF (open System. Gundrala Devender Goud Engineering Director/Azure/Microsoft OCP/OSF Project Lead

About unchecked management SMM & UEFI. Vulnerability. Patch. Conclusion. Bruno Pujos. July 16, Bruno Pujos

Mohan J. Kumar Intel Fellow Intel Corporation

Introduction to Standards based approach to Server

Comparison on BIOS between UEFI and Legacy

Reliability, Availability, and Serviceability (RAS) on AArch64. Fu Wei (Linaro LEG) Supreeth Venkatesh (ARM)

SCHOOL OF PHYSICAL, CHEMICAL AND APPLIED SCIENCES

Lessons Learned from Implementing a Wi-Fi and BT Stack

Payroll User Group Meeting October 11 th, 2017 AGENDA HRS. Washington State Univeristy 10/10/2017

Leveraging Windows Update to Distribute Firmware Updates Model Based Servicing (MBS)

State of the Port to x86_64 April 2017

HP Sure Start Gen3. Table of contents. Available on HP Elite products equipped with 7th generation Intel Core TM processors September 2017

Adrian Proctor Vice President, Marketing Viking Technology

UEFI BIOS and Intel Management Engine Attack Vectors and Vulnerabilities

Enabling Advanced NVMe Features Through UEFI

3 November 2009 e09127r1 EDD-4 Hybrid MBR support

Aptio 5.x Status Codes

Impact of platform firmware on Linux kernel. Megha Dey, Sai Praneeth Prakhya Intel Open Source Technology Center

NVM Express 1.3 Delivering Continuous Innovation

Windows 8 Uefi Bios Update Step By Step Guide Msi Usa

Implementing Advanced USB Interrupt Transfers

O p t i m i z e d U E F I I m p l e m e n t a t i o n o n I n t e l X e o n B a s e d O C P P l a t f o r m

Creating Advanced Graphics Libraries on top of GOP

ARM Trusted Firmware Evolution HKG15 February Andrew Thoelke Systems & Software, ARM

NVM Express TM Ecosystem Enabling PCIe NVMe Architectures

PERFORMANCE ANALYSIS USING NXP S I.MX RT1050 CROSSOVER PROCESSOR AND THE ZEPHYR OS

ARM Security Solutions and Numonyx Authenticated Flash

Graphics Output Protocol (GOP) Driver for UEFI

Implementing MicroPython as a UEFI Test Framework

Cisco Tetration Analytics

I Don't Want to Sleep Tonight:

Capabilities and System Benefits Enabled by NVDIMM-N

Improve productivity with modernized PCs and Windows 10. Christopher Choong, DTM Field Marketing Manager

Cisco C880 M4 Server User Interface Operating Instructions for Servers with E v2 and E v3 CPUs

A Tour Beyond BIOS Using the Intel Firmware Support Package with the EFI Developer Kit II

PCI-SIG Compliance Workshop #99 October 25-27, 2016 The Westin Taipei Taipei, Taiwan

Open Source Facebook. David Hendricks: Firmware Engineer Andrea Barberio: Production Engineer

Designing Security & Trust into Connected Devices

Oracle WebCenter Interaction: Roadmap for BEA AquaLogic User Interaction. Ajay Gandhi Sr. Director of Product Management Enterprise 2.

ARMv8-A Software Development

Intel Active Management Technology Overview

THE FUTURE IS HYBRID. Patrick Harr. Global Vice President, Cloud Strategy and Solutions Hewlett-Packard Company

UEFI Porting Update for ARM Platforms

Advanced x86: BIOS and System Management Mode Internals UEFI SecureBoot. Xeno Kovah && Corey Kallenberg LegbaCore, LLC

Scalable Platform Management Forum. Forum Status 10/30/2014

GSE/Belux Enterprise Systems Security Meeting

The following modifications have been made to this version of the DSM specification:

10 Steps to Virtualization

Transcription:

UEFI Plugfest March 2017 www.uefi.org 1

presented by The UEFI Forum State of UEFI Fall 2017 UEFI Seminar and Plugfest October 30 November 3, 2017 Presented by Mark Doran, UEFI Forum President www.uefi.org 2

Agenda Event Overview The UEFI Forum Specifications Update Summary Questions www.uefi.org 3

Event Overview www.uefi.org 4

Made Possible by... www.uefi.org 5

Agenda Day 1 Oct. 30 (Mon) Day 2 Oct. 31 (Tue) Day 3 Nov. 1 (Wed) Day 4 Nov. 2 (Thurs) Day 5 Nov. 3 (Fri) 08:00-08:30 Check-in (Event) / Breakfast 08:30-09:00 State of UEFI Mark Doran or Dong Wei Check-in (Event) Check-in (Event) 09:00-09:20 UEFI Security Response Team (USRT) UEFI Forum 09:20-09:30 Opening Ceremony 09:30-10:00 10:00-10:30 10:30-11:00 11:00-11:30 11:30-12:00 Testing Session Testing Session Testing Session Make-up Testing and Test Suite Breakdown 12:00-12:30 Lunch Lunch Lunch Check-out (Testing Suite) 12:30-13:00 13:00-13:30 "Last Mile" Barriers to Removing Legacy BIOS Intel UEFI Firmware - Security Concerns and Best Practices Phoenix Advances of UEFI Technologies in ARM Systems Arm Introduction to the Self-Certification Test (SCT) in UEFI World Canonical/Intel NFC and UEFI AMI Edk2 Platforms Overview Linaro 13:30-14:00 14:00-14:30 14:30-15:00 15:00-15:30 Testing Session Testing Session Testing Session 15:30-16:00 Strategies for Stronger Software SMI Security in UEFI Firmware Insyde Firmware Test Suite Introduction: Uses, Development, Contribution and GPL Canonical UEFI Manageability and REST Services HPE/Intel 16:00-16:30 Check-in (Room) / Testing Suite Setup 16:30-17:00 Testing Session Testing Session Testing Session 17:00-17:30 17:30-18:00 18:00-18:30 UEFI Plugfest October 2017 www.uefi.org 6 18:30-19:00 Social Dinner Event (18:30)

Venue Guide www.uefi.org 7

Event Survey Feedback Please! www.surveymonkey.com/r/fall2017plugfest To be included in the drawing for a chance to win the latest Harnessing the UEFI Shell book complete your survey by 10am on Thursday, November 2. www.uefi.org 8

The UEFI Forum www.uefi.org 9

UEFI Forum Overview Board of Directors Industry Communications Working Group UEFI Specification Working Group Platform Initialization Working Group Test Working Group ACPI Specification Working Group UEFI Security Response Team Security Subteam Configuration Subteam Network Subteam Shell Subteam Security Subteam NVDIMM Subteam 13 Promoters (1 new since Oct. 2016) 42 Contributors (4 new since Oct. 2016) Arm Binding Subteam 245 Adopters (29 new since Oct. 2016) 37 Individual Adopters (5 new since Oct. 2016) 337 Total Members www.uefi.org 10

Historical Milestones 2005 The UEFI Forum founded 2008 Apple adopts UEFI firmware; HP notebook and desktop platforms include UEFI 2009 UEFI Specification includes Arm architecture 2010 2011 2012 Secure Boot included in UEFI specification Linux Foundation joins the Forum Microsoft Windows 8 requires UEFI for its certification logo 2013 The UEFI Forum begins management of ACPI Specification 2015 PC hardware predominantly ships with UEFI www.uefi.org 11

UEFI Today and Beyond 2017 Future Industry-wide cooperation and support 337 members companies and individuals Common framework allowing developers to scale as needed Continuous evolution across a range of platforms and enables secure cross-functionality Firmware security campaign and resources to educate developers on the importance of 1) implementing UEFI firmware as outlined in the specifications and 2) taking a proactive approach to security, starting at the lowest levels with regular updates. www.uefi.org 12

Resources New Industry Resources Library Features presentations, articles and other collateral from thought leaders in firmware and platform security Reporting Security Issues If you have information on a security issue or vulnerability with a product that may be due to its UEFI-based firmware, visit http://www.uefi.org/security www.uefi.org 13

Specification Update www.uefi.org 14

Latest Specifications v2.7a v2.2 v1.6 v2.5a v1.1 v6.2a < Current Versions First time the UEFI, Platform Interface (PI) and ACPI specifications were updated together (received a lot of input from the community and members) Updates represent support for upcoming hardware, such as non-volatile memory, as well as deployment learnings over the last several years, such as the UEFI variable enhancement and completeness (i.e. the SPI driver) www.uefi.org 15

What s New in UEFI 2.7? New private authenticated NVRAM variables with X.509 certs Previously most AVs were in UEFI Secure Boot, which is a very specific environment. This change allows for more generalized interfaces and enhances the Set and Get variables services in UEFI runtime table. EFI HII Pop up protocol Added protocol to provide services for pop windows (i.e. in setup) External management capability for UEFI Secure Boot Allows for out-of-band management of UEFI Secure Boot keys, including service processors and hypervisors for guest firmware EFI HTTP Boot Callback Protocol (added) Can be used for HTTP boot debugging and packet inspection. This allows for printing status updates to the console during a long download during handoff to network boot file over HTTP Added ABI calling convention for RISC-V UEFI images New Reset Notification Protocol Registers a function to be called before grt->resetsystem() is executed Allows for a common wae a reset (i.e. TPM, NVME storage device etc.) www.uefi.org 16

What s New with ACPI 6.2? Secure Devices (SDEV) ACPI Table New SDEV ACPI table, a list of devices that are allowed/denied to be hand-off by secure OS to a normal one. Heterogeneous Memory Attribute Table (HMAT) New HMAT ACPI table, memory attributes for systems with heterogeneous memory architecture Platform Debug Trigger Table (PDTT) New PDTT ACPI table, a standard way to notify all debuggers connected to the system of a fatal crash. Processor Properties Topology Table (PPTT) New PPTT ACPI table, a description of CPU topology, available cache types and sizes. Windows SMM Security Mitigations Table Reserved WSMT ACPI table, Microsoft s invention for system firmware to report its SMM security measures Linux does not have a WSMT ACPI table equivalent so it does not have this SMM protection www.uefi.org 17

What s New with PI 1.6? Added the VOLUME_EXT_ENTRY_USED_SIZE structure No need to store it in ZeroVector anymore A new bit reserved in FFS file header This allows for new file alignments and supports hardware designs where the firmware storage must be at specific alignment MM Handler State Notification Protocol New protocol that is used to register a callback for each call of MmiHandler(Un)Register() and supports use of the MM infrastructure on Arm TrustZone RISC-V Processor Family Adds support for RISC-V architecture for PEI and grows the list of supported CPU bindings in the UEFI specification SPI Bus Overview Allows for a standardized way to access SPI NOR attached flash for accessing SPI sensors and devices www.uefi.org 18

SCT Updates UEFI SCT v2.6a Final and UEFI SCT v2.7 Alpha https://github.com/uefi/uefi-sct/tree/master/binaries/2017taipeiplugfest Direct link for the UEFISCT.zip is here: https://github.com/uefi/uefi- SCT/raw/master/Binaries/2017TaipeiPlugfest/UEFISCT.zip Direct link for the IHVSCT.zip is here: https://github.com/uefi/uefi- SCT/raw/master/Binaries/2017TaipeiPlugfest/IHVSCT.zip UEFI Board is considering UEFI SCT development model change FWTS 17.09.00 latest release for ACPI testing available at: Tar: http://fwts.ubuntu.com/release/fwts-v17.09.00.tar.gz PPA: https://launchpad.net/~firmware-testing-team/+archive/ubuntu/ppa-fwtsstable Release notes: https://wiki.ubuntu.com/firmwaretestsuite/releasenotes/17.09.00 www.uefi.org 19

Upcoming 2017/2018 Non-volatile memory across specifications Broad architecture support continues Roadmap incorporate updates as needed by the industry. Short term holding pattern for implementations to reach full potential. www.uefi.org 20

Summary www.uefi.org 21

Summary The UEFI Specification provides interfaces and mechanisms to allow for support of new technologies and improved development The UEFI Specification supports a more secure system, a faster boot time, improved performance, and platform feature innovation The UEFI Specification increases efficiency by allowing developers to reuse code and allows for extensibility, modularity and easy prototyping during development www.uefi.org 22

UEFI Plugfest October 2017 www.uefi.org 23

Questions? www.uefi.org 24

Thanks for attending the Fall 2017 UEFI Plugfest For more information on the UEFI Forum and UEFI Specifications, visit http://www.uefi.org presented by The UEFI Forum www.uefi.org 25

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback