Techly NewsGet the app

Get the latest tech news

Secure Boot Is Completely Broken On 200+ Models From 5 Big Device Makers


An anonymous reader quotes a report from Ars Technica, written by Dan Goodin: On Thursday, researchers from security firm Binarly revealed that Secure Boot is completely compromised on more than 200 device models sold by Acer, Dell, Gigabyte, Intel, and Supermicro. The cause: a cryptographic key und...

The encrypted file, however, was protected by a four-character password, a decision that made it trivial for Binarly, and anyone else with even a passing curiosity, to crack the passcode and retrieve the corresponding plain text. These keys were created by AMI, one of the three main providers of software developer kits that device makers use to customize their UEFI firmware so it will run on their specific hardware configurations. Binarly has named its discovery PKfail in recognition of the massive supply-chain snafu resulting from the industry-wide failure to properly manage platform keys.

Get the Android app

Or read this on Slashdot

Read more on:

Photo of Models

Models

Photo of Secure Boot

Secure Boot

Photo of big device makers

big device makers

Related news:

News photo

Secure Boot is broken on 200 models from 5 big device makers

News photo

Internal Change to iPhone 16 Models Expected to Reduce Overheating

News photo

Meta Won't Offer Future Multimodal AI Models In EU

« Applied Machine Learning for Tabular Data
PSVR2 App Will Be Available On Steam In August 2024, Hardware Requirements Revealed »