摘要
SPI范围保护寄存器是UEFI固件常用的一种保护机制。提出了一种篡改SPI范围保护寄存器值的方法,利用该方法可以实现SMM漏洞攻击。阐述了SPI范围保护寄存器原理,研究了SPI范围保护寄存器修改理论,实现对计算机SPI范围保护寄存器值的篡改。实验结果表明,任何采用SPI范围保护机制的固件均有可能采用这种方式进行破坏。
SPI range protection register is a common protection mechanism for UEFI firmware.In this paper,a method of tampering with SPI range protection register value is proposed,which can realize SMM copper leak attack.This paper also expounds the principle of SPI range protection register,studies the modification theory of SPI range protection register,and realizes tampering with the value of computer SPI range protection register.The experimental results show that any firmware using SPI scope protection mechanism may be destroyed in this way.
作者
王冠
杨松松
WANG Guan;YANG Song-song(College of Computer,Beijing University of Technology, Beijing 100124,China;Key Laboratory of Trustworthy Computing in Beijing, Beijing 100124,China)
出处
《软件导刊》
2018年第12期204-207,共4页
Software Guide
