Email this Article Email   

CHIPS Articles: NSA Releases Cybersecurity Technical Report for Unified Extensible Firmware Interface Secure Boot Customization

NSA Releases Cybersecurity Technical Report for Unified Extensible Firmware Interface Secure Boot Customization
By NSA Technical Report - September 16, 2020
WASHINGTON — The National Security Agency released a Unified Extensible Firmware Interface (UEFI) Secure Boot Customization Technical Report that provides detailed recommendations for customizing Secure Boot to better protect against firmware exploitation – a means attackers can use to gain persistent access to victim networks.

Secure Boot customization enables administrators to realize the benefits of boot malware defenses, insider threat mitigations, and data-at-rest protections. This product encourages National Security System (NSS), Department of Defense (DoD), and Defense Industrial Base (DIB) system administrators to customize Secure Boot instead of disabling it for compatibility issues.

This product follows NSA’s 30 July advisory release on the GRUB BootHole vulnerability and is published as part of NSA’s mission to help secure NSS, DoD, and DIB systems.

The full report can be viewed here.

Related CHIPS Articles
Related DON CIO News
Related DON CIO Policy

CHIPS is an official U.S. Navy website sponsored by the Department of the Navy (DON) Chief Information Officer, the Department of Defense Enterprise Software Initiative (ESI) and the DON's ESI Software Product Manager Team at Space and Naval Warfare Systems Center Pacific.

Online ISSN 2154-1779; Print ISSN 1047-9988
Hyperlink Disclaimer