Device Security

Not-So-Secure Boot – Jesse Michael, Mickey Shkatov – PSW #751

We welcome the infamous Eclypsium security researchers Mickey and Jesse to talk about Secure Boot vulnerabilities. They walk us through the history of Secure Boot, how it works, previous research they've performed ("Boothole"), and some details on their current research presented at Defcon this year in a talk titled "One bootloader to rule them all".

Full episode and show notes

Guests

Jesse Michael
Jesse Michael
Principal Researcher at Eclypsium

Jesse Michael is an experienced security researcher focused on vulnerability detection and mitigation who has worked at all layers of modern computing environments from exploiting worldwide corporate network infrastructure down to hunting vulnerabilities inside processors at the hardware design level. His primary areas of expertise include reverse engineering embedded firmware and exploit development. He has also presented research at DEF CON, Black Hat, PacSec, Hackito Ergo Sum, Ekoparty, and BSides Portland.

Mickey Shkatov
Mickey Shkatov
Security Researcher at Eclypsium

Hosts

Paul Asadoorian
Paul Asadoorian
Founder at Security Weekly
Tyler Robinson
Tyler Robinson
Director of Offensive Security & Research at Trimarc and Founder & CEO of Dark Element at Trimarc Security
prestitial ad