Slashdot Mirror
Windows 8 Secure Boot Defeated
jhigh writes "An Austrian security researcher is scheduled to release the first 'bootkit' for Windows 8 at the upcoming MalCon in Mumbai. This exploit loads in the MBR and stays memory resident until Windows loads, resulting in root access to the system. This allegedly defeats the new secure boot features in Windows 8's bootloader."
But if the Windows bootloader integrity is compromised, we could all end up infected with Ubuntu, Debian, FreeBSD--god only knows what!
Won't someone PLEASE think of the children?!?!?
SJW: Someone who has run out of real oppression, and has to fake it.
Secure Boot is a UEFI feature, not Windows one. The article makes no reference to UEFI whatsoever - and it offers no explanation either for what mechanic was actually defeated. I do doubt the integrity of the article ARS is using.
Hurray?
Finally a jailbreak for the desktop! I was tired of using locked-down hardware! I will now run a jailbroken desktop exclusively.
Is this an exploit of Windows or of UEFI in general?
1 (short ton / firkin) = 89.1432354 slugs / keg
Uhh UEFI literally has no MBR, it doesn't exist. So please explain to me how this exploit functions when the MBR doesn't exist? I think he is booting his drives in the wrong mode, which is to say legacy MBR mode instead of ADAPI/UEFI mode.
This would have been solved sooner if Modern Warfare 3 hadn't been released last week...
I'm tired of these software vendors thinking that they own the rights to my hardware that I pay for.
...instantaneously punched both my hands in the air!
I thought the point to the UEFI secure boot thing was that the UEFI wouldn't boot without the MBR and remainder of the boot blocks being properly digitally signed.
Unless someone broke the digital signature system or found a flaw in the implementation, this sounds more like working as intended.
The article also seems to think that the boot loader is supposed to be encrypted for some silly reason.
Seems pretty clear that the article doesn't understand how it works, so its hard to imagine theres much truth in it. If you tell the UEFI to ignore digital signatures on the boot loader then yes, it has been compromised ... cause you turned it off. Intentionally turning it off doesn't count as breaking it guys, sorry.
If there was a claim of a flaw in the UEFI Secure boot implementation or design, then I'd listen, but the fact that its being called a windows exploit when it occurs before Windows has been started kinda sets off signal flares, ya know?
Persistent Volume manager for Kubernetes - https://github.com/dwimsey/openshift-pvmanager
Austrian? Maybe they should call this one the UEFInator.
Hanz: Aww, you're such a little girlie boot record.
Franz: We're going to "boot" you up.
We saw all the tricks people employed to copy-protect games on the C64. Most of them were pretty weak. The most effective I recall were the methods which spread out their information gathering throughout the boot process. This prevented someone trying to break copy protection from easily identifying the part of code where the detection was executed. If Microsoft gathered information, throuhout the boot process it could easily assemble some sort of checksum to check the boot sector and identify if it wasn't genuine. Does it take more than 30 years to figure this sort of thing out?
A feeling of having made the same mistake before: Deja Foobar
If this Austrian guy is coming to the US to talk about this, will he not be arrested immediately because of the DMCA? And is the DMCA the reason that hacks like this seem to always come from Europe? Or am I paranoid?
-- Cheers!
He probably should have waited until after W8 was released, now they have a chance to patch out all his hard work before anyone gets a chance to make use of it.
Im waiting for TradeSecretCon in Beijing
This sig is not paradoxical or ironic.
Without a UEFI computer that is configured to boot only signed boot-loaders, this is not a valid test of the Secure Boot technology.
Basically, this is a case of "of course it works that way in this scenario, it's supposed to."
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
This is nice but unless its seamless and user friendly to the point of invisibility Microsoft gets what it wants, a computing environment that is that much more unfriendly to anything not windows. In this case they are going so far as making it unfriendly to old versions of windows as well as other operating systems. I guess they don't want to see future failures to adopt like they had with Vista and ME.
Well MS better have the 7 start menu / gui enterprise use and not the cell phone based UI How many people have touch screen laptops / desktops any ways?
But my child is gay, what does that portend?
My god, so many, many idiots. I wonder who turns on the computer for them.
To write to the MBR you need privileged/root access.
So, this thing that boots from MBR, gives you the root/privileged access you must have already had to write to the MBR? I give you the keys to my house, so you can change the locks and give me the key.
I don't want to be dismissive, but is this for real? It's not a hack.
This headline is incorrect, secure boot was not compromised. From the ARS story:
The exploit allegedly defeats the security features of Windows 8's new Boot Loader. However, Kleissner said in a message exchange with Ars Technica that the exploit did not currently target the Unified Extensible Firmware Interface (UEFI), but instead went after legacy BIOS. Kleissner said he has shared his research and paper and the paper he plans to present, "The Art of Bootkit Development," with Microsoft.
Secure boot does nothing if you have legacy BIOS.
If you don't know where you are going, you will wind up somewhere else.
And "oui" is the French word for yes, not just the English word for urine.
I don't know why you all want to screw windows users.
I, for one, want my windows computer to be safe against things like ophcrack + rainbow tables.
wow, I am an avid Apple user and I am against this quote. How about another reason to fight for what we want and not give in to companies telling us what we want?
"That's right...I said it."
At first I was being angry seeing all the mediocrity coming from that company.
Then it turned to laughter.
Nowadays I just want to cry. They're sad. So sad.
...to run software I WANT TO RUN ON IT is the day my Pentium Pro comes down out of the loft.
Operation Guillotine is in effect.
EUFI is not a PC-compatible BIOS, but it's still a "basic input output system" used to load the "real" OS. Sure, the proper word is firmware, but really I wouldn't be surprised if most people still call it the BIOS.
I gave it a month after release. I totally shouldn't have put $20 on it! Oh well. The odds were too good to pass up.
Having to work for a living is the root of all evil.
I don't like any of the ways this can happen. It's MY computer, I built it and sometimes I like to install Windows. Sometimes I like to play with Linux. Sometimes I like to play with overclocking and keep rebooting until it actually stays usable for more than 5 minutes. The fact that there is an exploit is good. The fact that M$ is actually trying to screw us is bad, they will try harder every year. I have never actually had a computer virus.
Seriously, hello, editors? Is anybody home? This post is 100% false. The very subject of this story has tweeted:
No it's not attacking UEFI or secure boot, right now working with the legacy BIOS only (details will be in the paper)
Do the words "reckless disregard for the truth" have any meaning to you?
If you don't know where you are going, you will wind up somewhere else.
The six additional exceptions are as follows:
1. Nonprofit library, archive and educational institution exception
(section 1201(d)). The prohibition on the act of circumvention of
access control measures is subject to an exception that permits
nonprofit libraries, archives and educational institutions to circumvent
solely for the purpose of making a good faith determination as to
whether they wish to obtain authorized access to the work.
2. Reverse engineering (section 1201(f)). This exception permits
circumvention, and the development of technological means for such
circumvention, by a person who has lawfully obtained a right to use a
copy of a computer program for the sole purpose of identifying and
analyzing elements of the program necessary to achieve interoperability
with other programs, to the extent that such acts are permitted under
copyright law.
3. Encryption research (section 1201(g)). An exception for encryption
research permits circumvention of access control measures, and theThe Digital Millennium Copyright Act of 1998
Copyright Office Summary December 1998 Page 6
development of the technological means to do so, in order to identify
flaws and vulnerabilities of encryption technologies.
4. Protection of minors (section 1201(h)). This exception allows a court
applying the prohibition to a component or part to consider the
necessity for its incorporation in technology that prevents access of
minors to material on the Internet.
5. Personal privacy (section 1201(i)). This exception permits circumvention when the technological measure, or the work it protects, is capable
of collecting or disseminating personally identifying information about
the online activities of a natural person.
6. Security testing (section 1201(j)). This exception permits circumvention of access control measures, and the development of technological
means for such circumvention, for the purpose of testing the security
of a computer, computer system or computer network, with the
authorization of its owner or operator.
http://www.copyright.gov/legislation/dmca.pdf
`(f) REVERSE ENGINEERING- (1) Notwithstanding the provisions of subsection (a)(1)(A), a person who has lawfully obtained the right to use a copy of a computer program may circumvent a technological measure that effectively controls access to a particular portion of that program for the sole purpose of identifying and analyzing those elements of the program that are necessary to achieve interoperability of an independently created computer program with other programs, and that have not previously been readily available to the person engaging in the circumvention, to the extent any such acts of identification and analysis do not constitute infringement under this title.
`(2) Notwithstanding the provisions of subsections (a)(2) and (b), a person may develop and employ technological means to circumvent a technological measure, or to circumvent protection afforded by a technological measure, in order to enable the identification and analysis under paragraph (1), or for the purpose of enabling interoperability of an independently created computer program with other programs, if such means are necessary to achieve such interoperability, to the extent that doing so does not constitute infringement under this title.
`(3) The information acquired through the acts permitted under paragraph (1), and the means permitted under paragraph (2), may be made available to others if the person referred to in paragraph (1) or (2), as the case may be, provides such information or means solely for the purpose of enabling interoperability of an independently created computer program with other programs, and to the extent that doing so does not constitute infringement under this title or violate applicable law other than this section.
`(4) For purposes of this subsection, the term `interoperability' means the ability of computer programs
The Kruger Dunning explains most post on
Seriously though why would any manufacturer do that?
Product differentiation. It's not that Microsoft would require motherboard manufacturers to disable secure boot. It's just that motherboard manufacturers would voluntarily hardcode Windows-only secure boot on their home-user-priced products and treat the ability to disable secure boot or to install one's own certificates as a niche feature suitable for a value-added upsell. Compare to the price difference between a retail game console and a debug console used by licensed developers.
Windows 8 does not *require* secure boot. Windows 8 does not *require* UEFI. The Windows 8 boot loader is *signed* so that it will support a system with secure boot.
How exactly was this about piracy when Windows 8 can be installed on hardware without UEFI, when Windows 8 can be booted without secure boot, when Windows 8 can be booted through an alternate boot loader?
Reading slashdot one-liner: (irm http://rss.slashdot.org/Slashdot/slashdot).rdf.item | fl title,desc*
MOD PARENT UP - yes, even though he's an AC.
RightSaidFred99 apparently hasn't got his thinking cap on, and was vehement in defense of an unknown. The AC may have used a lot of profanity to get his point across, but that is likely a result of RightSaidFred99's use of profanity, and does not invalidate the AC's point.
Posting as AC because any karma resulting from my defense of an AC who had the audacity to be right is likely to be negative.
This kind of flaw kind be patched.
The exploit is caused by a design flaw:
For the whole SecureBoot thing to work, every single step on the chain has to be secure.
i.e.: On power up, the computer starts a known and secure UEFI firmware. This firmware load a bootloader from the system GPT partition, and checks that it's correctly signed. Then in turn, this bootloader loads the relevant OS parts and check them further, etc.
For each step to be secure, the previous needs to have been secured too.
If any previous step is compromised, you can't trust any further step.
i.e.: The guy boots in plain BIOS-compatible mode. This mode loads and executes without any question the guy's MBR. This MBR installs a rootkit before actually booting. The root-kit pretends that a SecureBoot process did happen, and te OS does believe it.
From the point of view of the OS there's no way to tell if the "a Secure Boot process did successfully happen" is coming from a real secure boot process, and the checksum it's getting is a legitimate one, which is successfully signed with legitimate keys that the OS possess, or if the message one is a bogus one, produced by a root-kit mascarading as a secure bootloader, and that the message is successfully recognised, because it is checked against bogus keys which where injected into the OS by the root-kit (or the whole signing-check process being NOP-ed out by the root-kit). You can add more layer as you want to check the checks (checksumming the checksummer it-self, contacting a remote server, whatever else), these will be as easily defeated by the same trick (the root-kit compromising the checksum-checker, diverting the check to a compromised or a local server, etc.).
The other /. have a nice metaphor of playing a "Jedi Mind Trick" into making the OS believe that everything is Okay.
I find another image also helpful: You wake up in your hotel room, how to you know that your business suitcase wasn't tampered with, if absolutely anything could have happened while you were alseep?
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
He probably should have waited until after W8 was released, now they have a chance to patch out all his hard work before anyone gets a chance to make use of it.
Microsoft is already aware of the contents of the entire paper, because he gave it to them.
My guess is that Microsoft is actually quite pleased. It absolutely reinforces their argument *for* UEFI Secure Boot - as this very attack vector is exactly what is being closed by UEFI Secure Boot.
Reading slashdot one-liner: (irm http://rss.slashdot.org/Slashdot/slashdot).rdf.item | fl title,desc*
"He who loads first wins."
Anything that loads before you do can pretend to be something that it is not unless, of course, something that loads before it does (or hardware) stops it.
Anything that loads before you can modify you before allowing you to run unless something that loads before it does (or hardware) stops it.
In other words, if you aren't the hardware, you are at the mercy of the hardware. If you aren't the first to load, you are at the mercy of anything that loads before you do.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
A valid test is a test of a complete machine, already "locked down" to some degree before you get it. In this case, this means computer plus BIOS plus operating system loader plus operating system up through the first opportunity for the user to interact with the system.
If you as a human being can "take control" before you are supposed to, then that particular combination of hardware, BIOS, OS loader, and OS fails the test.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
But it doesn't really matter. Having booted securely does not enable or disable any particular functionality in Windows.
For now it's only a small check box "Has been booted securely". For. Now.
Applications stores, DRM system in software, digital media copy prevention, and much more other mechanisms are all going to slowly start relying on a securely booted system.
Today's demonstration shows that relying on trusted code runing through a secure boot procedure is a flawed idea. It will be broken eventually, just like DRM is.
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
The Library of Congress is allowed to nominate specific exemptions to the DMCA due to clauses in the DMCA. Jailbreaking was one of them. It was not a ruling, the Library of Congress isn't a court.
http://lkml.org/lkml/2005/8/20/95