Troy Martin – Firmware Security

Troy Martin of 1E has written the final of this 3-part blog posts on Device Guard, a new feature of Windows 10, targetting enterprise sysadmins.

Device Guard: The Practice, our final blog in the 3-part security series from @1E_TroyMartin https://t.co/3FKMz1UCgG pic.twitter.com/ABtsFhMsQO

— 1E (@1E_global) May 3, 2016

Planning for #Windows10 #DeviceGuard? Here's high-level information and recommendations for the tasks to execute. https://t.co/uMaVJEIW4X

— Troy L. Martin (@TroyMartinNet) May 3, 2016

Get ready to implement #DeviceGuard and secure the enterprise with @1E_TroyMartin's 3-part blog series https://t.co/Gu9Yq6b2RH

— 1E (@1E_global) May 4, 2016

[…]
Welcome to the third and final blog in the series on Device Guard!!
Device Guard hardens various attack surfaces on an endpoint creating a “chain of trust” from the hardware through to the Windows OS kernel and to software running in Windows.
Device Guard components run in isolation from the Windows kernel and is secured by a Windows Hyper-V container called Virtual Secure Mode (VSM).
It is evident that Device Guard provides revolutionary endpoint security in Windows 10; a formidable opponent and offense against viruses, malware, bad actors and other modern day threats. Time to start taking advantage of it and securing the enterprise!!
[…]

I'm excited to present "Making the switch from BIOS to UEFI" at MMS 2015 with @1E_TroyMartin. http://t.co/l8IHXHXorC @mmsmoa

— Mike Terrill [MVP] (@miketerrill) October 13, 2015

If security is top priority for migrating to #Windows10, make #UEFI and #SecureBoot top priority now #1EWin10 https://t.co/bbRJm71nwe

— Troy L. Martin (@TroyMartinNet) October 13, 2015

Mike Terrell and Troy Martin are giving a talk at the Midwest Management Summit (MMS) on transitioning Windows systems from BIOS to UEFI.

Making the switch from BIOS to UEFI

The Unified Extensible Firmware Interface (UEFI) is the next generation interface between the operating systems and the platform firmware. UEFI replaces the legacy Basic Input/Output System (BIOS) firmware that has been around since the beginning of personal computers. Although UEFI has been around for several years, manufacturers have provided support for legacy BIOS by the means of a Compatibility Support Module (CSM). This allows support for booting from MBR-partitioned disks. The downside to this old school booting method is that it is vulnerable to root kits and other intelligent types of malware that inserts itself into the booting process. In this session, you will learn the differences of BIOS and UEFI, the benefits of UEFI and Windows 10 security benefits that are only available when running UEFI. How to use Configuration Manager to inventory systems that are running UEFI (as well as those that are not). Also, you will learn about the common pitfalls when making the switch from BIOS to UEFI, how to avoid them, and how zero touch OSD is actually possible when making the switch.

http://mmsmoa.com/
http://mms2015.sched.org/event/a6243319bb0dcd3c631fda78c2763480

Tag: Troy Martin

Troy Martin’s Windows Device Guard trilogy

MMS2015: Terrell and Martin on UEFI