all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

PMFault: Voltage Fault Injection on Server Platforms Through the PMBus

Add to bookmarks
Sept. 28, 2023, 7:03 p.m. | Black Hat

Black Hat www.youtube.com

Hardware-based attacks like voltage glitching have been a threat to embedded processors like smartcards for decades. More recently, attacks like Clkscrew, Plundervolt, VoltJockey, and V0ltPwn, have shown that desktop and server processors are equally vulnerable to voltage fault injection. Controlling the built-in power management features from software, those attacks break the security guarantees of trusted execution environments like Intel SGX or ARM TrustZone.

In this talk, we look at a related, yet so-far overlooked attack surface - the PMBus - …

attacks desktop embedded equally features from software hardware injection management platforms plundervolt power power management processors server software threat voltage vulnerable

Visit resource

More from www.youtube.com / Black Hat

Startup Spotlight Competition at Black Hat 1 week ago | www.youtube.com
bhusa blackhat cybersecurity infosec +1
Locknote: Conclusions and Key Takeaways from Day 2 3 weeks, 5 days ago | www.youtube.com
black hat black hat europe board board members +15
Locknote: Conclusions and Key Takeaways from Day 1 3 weeks, 5 days ago | www.youtube.com
black hat black hat europe board board members +16
Keynote: My Lessons from the Uber Case 3 weeks, 5 days ago | www.youtube.com
addition best practices case convicted +16
Keynote: Industrialising Cyber Defence in an Asymmetric World 3 weeks, 6 days ago | www.youtube.com
adversaries challenge cyber cyber defence +10
The Black Hat Europe Network Operations Center (NOC) Report 3 weeks, 6 days ago | www.youtube.com
back black hat black hat europe center +14
My Invisible Adversary: Burnout 1 month ago | www.youtube.com
adversary attackers attacks burnout +11
The Magnetic Pull of Mutable Protection: Worked Examples in Cryptographic Agility 1 month ago | www.youtube.com
analysis ask bad codeql +10
A World-View of IP Spoofing in L4 Volumetric DoS Attacks - and a Call to … 1 month ago | www.youtube.com
attacks call cloudflare detection +10

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Red Team Operator

@ JPMorgan Chase & Co. | LONDON, United Kingdom
View on infosec-jobs.com

SOC Analyst

@ Resillion | Bengaluru, India
View on infosec-jobs.com

Director of Cyber Security

@ Revinate | San Francisco Bay Area
View on infosec-jobs.com

Jr. Security Incident Response Analyst

@ Kaseya | Miami, Florida, United States
View on infosec-jobs.com

Infrastructure Vulnerability Consultant - (Cloud Security , CSPM)

@ Blue Yonder | Hyderabad
View on infosec-jobs.com

Product Security Lead

@ Lely | Maassluis, Netherlands
View on infosec-jobs.com
View more jobs