« 標的型メール攻撃が前期比約2倍に増加 | Main | 自動取引システムの障害で4億4千万ドルの損失 (米国) »

2012.08.30

NIST SP800-147b DRAFT BIOS Protection Guidelines for Servers

 こんにちは,丸山満彦です。2012.08.05のまるちゃんTwitterから。。。
=====

 
NIST SP800

NIST SP800-147b DRAFT BIOS Protection Guidelines for Servers

=====
Executive Summary
1. Introduction
 1.1 Purpose and Scope
 1.2 Audience
 1.3 Document Structure

2. Background
 2.1 System BIOS
 2.2 Server Architectures
 2.3 System BIOS Update Mechanisms
 2.4 Threats to the System BIOS
 2.5 Root of Trust for Update

3. BIOS Security Principles
 3.1 BIOS Update Authentication
 3.2 Secure Local Update
 3.3 Firmware Integrity Protection
 3.4 Non-Bypassability

4. Security Guidelines by Update Mechanism
 4.1 Update Mechanism 1: Secure BIOS Update at Anytime
 4.2 Update Mechanism 2: Secure BIOS Update at Reboot
 4.3 Update Mechanism 3: Secure BIOS Update Requiring Verification at Boot

5. Guidelines for Service Processors
 5.1 Service Processor as a Root of Trust
 5.2 Non-Bypassability of BIOS Protections by Service Processor

List of Appendices
 Appendix A— Summary of Requirements
 Appendix B— Example of Update Mechanism 1
 Appendix C— Example of Update Mechanism 2
 Appendix D— Example of Update Mechanism 3
 Appendix E— Glossary
 Appendix F— Acronyms and Abbreviations
 Appendix G— References
=====

|

« 標的型メール攻撃が前期比約2倍に増加 | Main | 自動取引システムの障害で4億4千万ドルの損失 (米国) »

Comments

Post a comment



(Not displayed with comment.)




TrackBack

TrackBack URL for this entry:
http://app.cocolog-nifty.com/t/trackback/64462/55539386

Listed below are links to weblogs that reference NIST SP800-147b DRAFT BIOS Protection Guidelines for Servers:

« 標的型メール攻撃が前期比約2倍に増加 | Main | 自動取引システムの障害で4億4千万ドルの損失 (米国) »