[edk2-devel] [PATCH V3 5/9] OvmfPkg/IntelTdx: Measure Td HobList and Configuration FV
Gerd Hoffmann
kraxel at redhat.com
Wed Apr 20 16:05:29 UTC 2022
On Wed, Apr 20, 2022 at 09:46:13AM +0000, Yao, Jiewen wrote:
> Gerd
> I cannot agree your statement on ordering.
>
> Smart attacker can forge the good measurement based upon the severity of vulnerability.
>
> One famous example in 2011:
> https://invisiblethingslab.com/resources/2011/Attacking_Intel_TXT_via_SINIT_hijacking.pdf
> Because the attack happens before PCR18 measurement, the PCR18 is forged successfully.
Ok, understood. The paper explains it nicely.
thanks,
Gerd
-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#89142): https://edk2.groups.io/g/devel/message/89142
Mute This Topic: https://groups.io/mt/90531017/1813853
Group Owner: devel+owner at edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [edk2-devel-archive at redhat.com]
-=-=-=-=-=-=-=-=-=-=-=-
More information about the edk2-devel-archive
mailing list