PMFault: Voltage Fault Injection on Server Platforms Through the PMBus | allinfosecnews.com

Sept. 28, 2023, 7:03 p.m. | Black Hat

Black Hat www.youtube.com

Hardware-based attacks like voltage glitching have been a threat to embedded processors like smartcards for decades. More recently, attacks like Clkscrew, Plundervolt, VoltJockey, and V0ltPwn, have shown that desktop and server processors are equally vulnerable to voltage fault injection. Controlling the built-in power management features from software, those attacks break the security guarantees of trusted execution environments like Intel SGX or ARM TrustZone.

In this talk, we look at a related, yet so-far overlooked attack surface - the PMBus - …

attacks desktop embedded equally features from software hardware injection management platforms plundervolt power power management processors server software threat voltage vulnerable

More from www.youtube.com / Black Hat

Black Hat Asia 2024 Highlights 2 weeks, 3 days ago | www.youtube.com

asia black hat black hat asia black hat asia 2024

Startup Spotlight Competition at Black Hat 1 month ago | www.youtube.com

bhusa blackhat cybersecurity infosec +1

Locknote: Conclusions and Key Takeaways from Day 2 1 month, 3 weeks ago | www.youtube.com

black hat black hat europe board board members +15

Locknote: Conclusions and Key Takeaways from Day 1 1 month, 3 weeks ago | www.youtube.com

black hat black hat europe board board members +16

Keynote: My Lessons from the Uber Case 1 month, 3 weeks ago | www.youtube.com

addition best practices case convicted +16

Keynote: Industrialising Cyber Defence in an Asymmetric World 1 month, 3 weeks ago | www.youtube.com

adversaries challenge cyber cyber defence +10

The Black Hat Europe Network Operations Center (NOC) Report 1 month, 3 weeks ago | www.youtube.com

back black hat black hat europe center +14

My Invisible Adversary: Burnout 1 month, 3 weeks ago | www.youtube.com

adversary attackers attacks burnout +11

The Magnetic Pull of Mutable Protection: Worked Examples in Cryptographic Agility 1 month, 3 weeks ago | www.youtube.com

analysis ask bad codeql +10

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com