[cap-talk] "Security Issues related to Pentium System Management Mode"
David Hopwood
david.nospam.hopwood at blueyonder.co.uk
Wed May 3 10:20:36 EDT 2006
The following attack demonstrates the importance of applying fine-grained POLA
to I/O register access in drivers:
Loïc Duflot,
Security Issues related to Pentium System Management Mode
<http://www.cansecwest.com/slides06/csw06-duflot.ppt>
(The video subsystem in a capability OS would never be designed like X, anyway,
so this would at most allow a privilege escalation if there were an exploitable
bug in a display driver -- but we would like to prevent even that, to the extent
possible.)
--
David Hopwood <david.nospam.hopwood at blueyonder.co.uk>
More information about the cap-talk
mailing list