all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Preventing Initramfs Attacks in TPM-Based Disk Encryption

Add to bookmarks
Dec. 15, 2023, 1:05 p.m. | Max Arnold

Application and Cybersecurity Blog blog.securityinnovation.com




This is a 2-part series where we'll explore vulnerabilities in systems that use Trusted Platform Modules (TPMs) for disk encryption, exposing the risks of unverified initramfs images and bus sniffing attacks.


In this article, we'll look at how disk encryption uses the initramfs and you'll see why using PCR 9 is so important for properly securing a system.

article attacks bus disk disk encryption encryption exposing hardware attack images important initramfs attack modules platform risks series sniffing systems tech article tpm tpm disk encryption vulnerabilities

Visit resource

More from blog.securityinnovation.com / Application and Cybersecurity Blog

New OWASP Mobile Top Ten: Know What Changed 1 month, 1 week ago | blog.securityinnovation.com
application application security apps current +22
Women in Cybersecurity: Rocking Code Ahead of Their Time 1 month, 3 weeks ago | blog.securityinnovation.com
analysis celebration code coding +11
CMD+CTRL Training: Q1 2024 Release in Review 2 months, 2 weeks ago | blog.securityinnovation.com
ai privacy android application security catalog +19
Preventing Initramfs Attacks in TPM-Based Disk Encryption 4 months, 2 weeks ago | blog.securityinnovation.com
article attacks bus disk +17
Stopping Bus Sniffing with TPM Parameter Encryption 4 months, 2 weeks ago | blog.securityinnovation.com
attack bitlocker bus disk +16
Moving to Mobile DevSecOps? Here's How. 4 months, 2 weeks ago | blog.securityinnovation.com
addresses app app development application +19
CMD+CTRL Training: Q4 2023 Release in Review 6 months, 2 weeks ago | blog.securityinnovation.com
application application security catalog coding +20
Four Steps to Help You Tackle AppSec Training—and Succeed 6 months, 2 weeks ago | blog.securityinnovation.com
application security appsec constraints cybersecurity training +13
Attacks Over The Air - Phreaking HTML Injection 7 months, 1 week ago | blog.securityinnovation.com
air attacks audio back +20

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Premium Hub - CoE: Business Process Senior Consultant, SAP Security Role and Authorisations & GRC

@ SAP | Dublin 24, IE, D24WA02
View on infosec-jobs.com

Product Security Response Engineer

@ Intel | CRI - Belen, Heredia
View on infosec-jobs.com

Application Security Architect

@ Uni Systems | Brussels, Brussels, Belgium
View on infosec-jobs.com

Sr Product Security Engineer

@ ServiceNow | Hyderabad, India
View on infosec-jobs.com

Analyst, Cybersecurity & Technology (Initial Application Deadline May 20th, Final Deadline May 31st)

@ FiscalNote | United Kingdom (UK)
View on infosec-jobs.com
View more jobs