OpenPOWER secure and trusted boot, Part 1: Using trusted boot on IBM OpenPOWER servers

This 2017 document has been updated this month.

OpenPOWER secure and trusted boot, Part 1: Using trusted boot on IBM OpenPOWER servers: Making your system safe against boot code cyberattacks

by Dave Heller, Tim Block
Updated April 26, 2019 – Published February 17, 2017

OpenPOWER servers provide a firmware-level security facility known as Trusted Boot. Trusted Boot helps you to verify that your server is running only authorized firmware components from IBM or another trusted vendor. This allows you to detect and take corrective action in case of a boot code cyberattack – that is, any attempt to replace your trusted firmware with malicious code. If an attacker can inject malicious code at the firmware level, no amount of protection within the operating system can prevent the attacker from gaining control of your server.

https://developer.ibm.com/articles/trusted-boot-openpower/

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s