| EFI及其安全性分析 |
| |
| 引用本文: | 刘冬,文伟平. EFI及其安全性分析[J]. 信息网络安全, 2009, 0(5): 32-34. DOI: 10.3969/j.issn.1671-1122.2009.05.014 |
| |
| 作者姓名: | 刘冬 文伟平 |
| |
| 作者单位: | 北京大学软件与微电子学院信息安全系,北京,102600 |
| |
| 摘 要: | 随着计算机技术的发展,传统PcBIOS已逐渐成为了现代计算机发展的瓶颈。为了解决BIOS60局限性和相关的问题。Intel公司提出了可扩展固件接口(EFI)的规范标准。作为下一代BIOS,EFI为启动操作系统前的程序提供了一个标准环境。EFI规范具有良好的可扩展性,模块化设计和较低的入门门槛等优势,它大大方便了整个硬件工业的创新和发展。文中详细介绍了EFI,指出EFI存在的一些安全问题,指出了实现EFI安全必须考虑的因素。
|
| 关 键 词: | EFI 可扩展接口 BIOS 安全性 |
EFI and Security Analysis of EFI Framework |
| |
| LIU Dong,WEN Wei-ping. EFI and Security Analysis of EFI Framework[J]. Netinfo Security, 2009, 0(5): 32-34. DOI: 10.3969/j.issn.1671-1122.2009.05.014 |
| |
| Authors: | LIU Dong WEN Wei-ping |
| |
| Affiliation: | (Department of lnformation Security, SSM, Peking University, Beijing 102600, China) |
| |
| Abstract: | With the development of the computer technology, the traditional PC BIOS has become a bottleneck in the development of the modern computer. In order to solve the limitations and difficulties of traditional PC BIOS, Intel has proposed Extensible Firmware Interface (EFI) Specifications. As the next generation of BIOS, EFI provides a standard environment for booting an OS. In contrast with BIOS, EFI components are designed based on modules and could be written with C, which enables good extensibility. EFI largely facilitates the whole PC Industry's innovation. This paper gives a brief introduction of EFI and takes a closer look at some security issues in EFI. Moreover, some key factors that have to be taken into account in a secure EFI environment are proposed. |
| |
| Keywords: | EFI BIOS |
| 本文献已被 维普 万方数据 等数据库收录! |
|
