Well. Microcode updates are lost on reboot, and they can only be applied from pr... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		0x0 on Aug 12, 2014 \| parent \| context \| favorite \| on: Errata prompt Intel to disable TSX in Haswell, ear... Well. Microcode updates are lost on reboot, and they can only be applied from privileged code. Which means you'll have to be able to slip rogue code into the BIOS or the kernel, at which point you already have full control. The "negative ring" levels of code (SMI, etc) are quite powerful already. But a trojanized microcode update file inside an otherwise regular BIOS would be a nice hiding spot, hard to detect and analyze, at least for anyone outside Intel.

AlyssaRowan on Aug 12, 2014 [–]

Or you could just use SMM or IPMI.

sillysaurus3 on Aug 12, 2014 | [–]

Use those how? Would you go into detail?

amluto on Aug 12, 2014 | | [–]

See, for example: http://www.eecs.ucf.edu/%7Eczou/research/SMM-Rootkits-Secure...

If you're an OS, then you need some kind of exploit to update SMM code. But if you're the BIOS, then you have complete control over what happens in SMM mode.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact