NIST SP800-147b DRAFT BIOS Protection Guidelines for Servers
こんにちは,丸山満彦です。2012.08.05のまるちゃんTwitterから。。。
=====
●NIST SP800-147b DRAFT BIOS Protection Guidelines for Servers
=====
Executive Summary
1. Introduction
1.1 Purpose and Scope
1.2 Audience
1.3 Document Structure
2. Background
2.1 System BIOS
2.2 Server Architectures
2.3 System BIOS Update Mechanisms
2.4 Threats to the System BIOS
2.5 Root of Trust for Update
3. BIOS Security Principles
3.1 BIOS Update Authentication
3.2 Secure Local Update
3.3 Firmware Integrity Protection
3.4 Non-Bypassability
4. Security Guidelines by Update Mechanism
4.1 Update Mechanism 1: Secure BIOS Update at Anytime
4.2 Update Mechanism 2: Secure BIOS Update at Reboot
4.3 Update Mechanism 3: Secure BIOS Update Requiring Verification at Boot
5. Guidelines for Service Processors
5.1 Service Processor as a Root of Trust
5.2 Non-Bypassability of BIOS Protections by Service Processor
List of Appendices
Appendix A— Summary of Requirements
Appendix B— Example of Update Mechanism 1
Appendix C— Example of Update Mechanism 2
Appendix D— Example of Update Mechanism 3
Appendix E— Glossary
Appendix F— Acronyms and Abbreviations
Appendix G— References
=====
Comments