hypnosec writes: The National Institute of Standards and Technology (NIST) US, has come up with a set of proposed guidelines for security of server BIOS (Basic Input/Output System) – the mechanism on which most modern day computers rely on during boot up. Recently quite a few malware have been known to persistently infect computer systems and cannot be removed even on OS re-installs and NIST is proposing a set of measures through which the BIOS can be made more secure and resistant to such firmware manipulating attacks. Mebromi is one such Trojan. NIST published the draft guidelines [PDF] earlier this week and has proposed four different features through which the server BIOSes can be made more secure – authenticated update mechanism; secure local update mechanism (optional); firmware integrity protections; non-bypassability features.
Top Ten Things Overheard At The ANSI C Draft Committee Meetings:
(7) Well, it's an excellent idea, but it would make the compilers too
hard to write.