[coreboot] SPI controller and Lock bits
Sam Kuper
sam.kuper at uclmail.net
Fri Sep 28 04:18:14 CEST 2018
On 28/09/2018, Peter Stuge <peter at stuge.se> wrote:
> Youness Alaoui wrote:
>> avoid any malware writing to the flash
>
> Just disallow flash writes by the platform. Allow flash writes only
> by dedicated hardware (maybe ChromeEC?) which implements a simple and
> efficient security protocol.
Relevant URL: https://www.chromium.org/chromium-os/ec-development#TOC-Write-Protect
> Looking for a software solution is IMO like Intel trying to secure SMM.
Hear, hear!
More information about the coreboot
mailing list