flat assembler
Message board for the users of flat assembler.

Index > Windows > Windows 8 has a kill switch

Goto page Previous  1, 2
Author
Thread Post new topic Reply to topic
shutdownall



Joined: 02 Apr 2010
Posts: 518
Location: Munich
shutdownall
revolution wrote:
I've been using such SOCs for the last three years.

But surely not with WIN8 since the developer preview was not available before autumn 2011. Cool

I take more care about the new PC OS.
I never use smartphones except calling somebody via GSM. Razz
Post 29 Feb 2012, 00:37
View user's profile Send private message Send e-mail Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17279
Location: In your JS exploiting you and your system
revolution
shutdownall wrote:
But surely not with WIN8 since the developer preview was not available before autumn 2011.
The SOCs have been available for a long time. Whether or not W8 runs on them has nothing to do with the existence of the chips.

I do find it interesting that MS have only specified secure boot for ARM systems. It seems they are scared to also insist on it for x86 systems. I wonder why that is?
Post 29 Feb 2012, 00:53
View user's profile Send private message Visit poster's website Reply with quote
shutdownall



Joined: 02 Apr 2010
Posts: 518
Location: Munich
shutdownall
revolution wrote:

I do find it interesting that MS have only specified secure boot for ARM systems. It seems they are scared to also insist on it for x86 systems. I wonder why that is?


Are you sure ? Wink

Quote:

System.Fundamentals.Firmware.UEFILegacyFallback

Target Feature: System.Fundamentals.Firmware

Title: System firmware must not fall back to legacy BIOS mode without explicit user action

Applicable OS Versions:
 Windows 8 Client x86
 Windows 8 Client x64
 Windows 8 Client ARM
 Windows 8 Server x64
 Windows Server 2008 Release 2 x64

Description:
If the system ships with a UEFI-compatible OS, system firmware must be implemented as UEFI and it must be able to achieve UEFI boot mode by default. Such a system may also support fallback to legacy BIOS boot on systems with OS which do not support UEFI, but only if the user selects that option in a pre-boot firmware user interface. Legacy option ROMs also may not be loaded by default.

"Explicit User Action" means that end user (or in case of enterprise customer, the IT pro) must manually access the pre-boot firmware configuration screen and change the setting. It may not ship in the BIOS mode by default and programmatic methods which can be attacked by malware are not acceptable.


http://msdn.microsoft.com/library/windows/hardware/hh748188
Post 29 Feb 2012, 21:48
View user's profile Send private message Send e-mail Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17279
Location: In your JS exploiting you and your system
revolution
shutdownall wrote:
Are you sure ?
Yes. I am sure. For ARM systems MS have specified that the user has no way to select a non-secure boot mode. Your quote above is only applicable for x86 systems and shows that for x86 the user can boot in any way the user desires.
Post 29 Feb 2012, 23:53
View user's profile Send private message Visit poster's website Reply with quote
Coty



Joined: 17 May 2010
Posts: 546
Location: ␀
Coty
^ Then it will be cracked, CFW (Custom Firmware)! As long as there software is on flash and not ROM there is a good chance to crack it. I remember something about people even running android on iphones, even a program were you could launch it from the iOS menu and it would kill the kernel, take over then launch android, and when you rebooted, iOS acted like nothing ever happened.

Silly rat corporations want to play a cat versus mouse game, but we are the cats, and the cats always get the mouse.
Post 01 Mar 2012, 01:30
View user's profile Send private message Send e-mail Visit poster's website AIM Address Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17279
Location: In your JS exploiting you and your system
revolution
Having code in flash is trivial to hack/crack and is not an issue. Just reflash and run whatever OS you want.

Having code in ROM is an entirely different thing. If the SOC has no input (or procedure) to enable the ROM code to allow non-secure boot then you will require some very expensive equipment to change that. Certainly not something any end user could reasonably be expected to have available.
Post 01 Mar 2012, 01:47
View user's profile Send private message Visit poster's website Reply with quote
shutdownall



Joined: 02 Apr 2010
Posts: 518
Location: Munich
shutdownall
I think it doesn't matter if code is in ROM or Flash.

For a not very long time this universal certificate from Microsoft will be hacked and have some tools to sign there own drivers with MS certificate. And after that MS will change the certificate. And what now, if it is patched in ROM for lifetime ?

This is crazy stupid stuff from Microsoft. There are so many security lack's in the OS, who ever believes this will be stopped with WIN 8 ? Patchday will be more weekly than monthly in future I think. Maybe have a patch of the day. Very Happy
Post 01 Mar 2012, 11:35
View user's profile Send private message Send e-mail Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17279
Location: In your JS exploiting you and your system
revolution
shutdownall wrote:
For a not very long time this universal certificate from Microsoft will be hacked and have some tools to sign there own drivers with MS certificate.
I hope you are right about that. But it would also mean the end of SSL if such certificates can be broken.
Post 01 Mar 2012, 11:38
View user's profile Send private message Visit poster's website Reply with quote
shutdownall



Joined: 02 Apr 2010
Posts: 518
Location: Munich
shutdownall
I trust 100% in the skills of Microsoft. Very Happy Wink Rolling Eyes
Post 01 Mar 2012, 11:46
View user's profile Send private message Send e-mail Reply with quote
drewtoby



Joined: 05 Mar 2012
Posts: 19
drewtoby
revolution wrote:
Apple already does it, Amazon with the Kindle, Google with the Android and now MS want to get a piece of the Big-Brother-is-in-control pie.


Everyone should read 1984 by George Orwell! Trust me, you will be able to make connections on the fly.

As for the dumbed down operating systems, websites, ect., at least we can still code/create on our own programs. I just hope that MS does not try to move away from open source software. If they do, I'll run a linux OS!!!!!

Still, the open source software "companies"are thriving as of now: Gimp, Arduino, Linux, Flat Assembler, Notepad++, ect. I am trying to create my own open source project in assembly language, too Laughing
Post 07 Mar 2012, 02:41
View user's profile Send private message Reply with quote
Display posts from previous:
Post new topic Reply to topic

Jump to:  
Goto page Previous  1, 2

< Last Thread | Next Thread >
Forum Rules:
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Copyright © 1999-2020, Tomasz Grysztar. Also on YouTube, Twitter.

Website powered by rwasa.