Upload File

introduction on uefi history

6
CHAPTER 1 INTRODUCTION ON UEFI HISTORY In the beginning, there was Basic Input/output System (BIOS). Back in those times, processors were running in 16-bit mode, and Random-access memory (RAM) was architecturally limited to 1 megabyte. As the evolution went forth, came 32-bit, and later 64-bit x86 Central processing unit (CPU), amount of RAM was increasing, and new ways of accessing it were being developed. But BIOS remained same. This situation was far from ideal, since BIOS code was very limited, and operating system loader had to load kernel just with using the most basic BIOS services, from 20 years ago. [1] Creating new standard seemed impossible on such diverse market. But it was done anyway. 1

Upload: sugaintheran-muniandy

Post on 16-Dec-2015

8 views

Category:

Documents


5 download

Report

DESCRIPTION

UEFI

TRANSCRIPT

Unified Extensible Firmware Interface (UEFI)-Secure Boot

CHAPTER 1

INTRODUCTION ON UEFI HISTORY

In the beginning, there wasBasic Input/output System (BIOS). Back in those times, processors were running in 16-bit mode, and Random-access memory (RAM) was architecturally limited to 1 megabyte. As the evolution went forth, came 32-bit, and later 64-bit x86 Central processing unit (CPU), amount of RAM was increasing, and new ways of accessing it were being developed. But BIOS remained same. This situation was far from ideal, since BIOS code was very limited, and operating system loader had to load kernel just with using the most basic BIOS services, from 20 years ago. [1] Creating new standard seemed impossible on such diverse market. But it was done anyway.

1.1Development of UEFI standard

It all has begun when Intel decided to develop 64-bit CPU. They made decision which was very good logically, but unfortunately not as good market-wise: to get rid of all ancient x86 features, drop entire x86 backward portability, and create completely new CPU architecture, named Itanium (IA64). That also meant that old BIOS won't be running on it, and so opportunity opened for new standard interface between OS and hardware/firmware. This is how first steps took place in the half of 90s, to replace BIOS by new standard, called Extended Firmware Interface (EFI).EFI is very different from old BIOS: it offers wide range of functionality even before OS starts loading, it is modular (you can add custom code or drivers), runs on various platforms, applications and drivers for it can be written in C not in Assembly, thus they are more portable, etc. Besides native CPU code, EFI supports custom bytecode, so drivers can be compiled so that they are portable between CPU architectures without need for recompilation. [5]

1.2Implementations

Next important thing for Unified Extensible Firmware Interface (UEFI) to become real standard, besides specification, is some implementation on real hardware. Intel had his own implementation of EFI 1.10 standards, called Platform Innovation Framework, or The Framework in short, or Tiano by project name. From this, in 2005 Intel released core part dubbed TianoCore, or EFI Development Kit (EDK). This project became open-sourced, and is now developed by companies and volunteers from all over the world. First company besides Intel to implement EFI was Insyde. They offer their implementation called InsydeH20, or lightweight version of it called InsydeDIY. It seems these only support UEFI 1.x standards, as Insyde doesn't ever mention UEFI 2.0 on their site, nor is x86-64 CPU on list of supported CPUs. [2]

Phoenix Technologies supports UEFI 2.0 in its brands SecureCore, TrustedCore, and AwardCore Tiano. They also offer development environment for driver programming, called UEFI Platform Initialization DDK: Phoenix TrustedCore, Phoenix SecureCore, and Phoenix AwardCore Tiano. [3]AMI (American Megatrends Inc.) supports UEFI 2.0 in their codebase Aptio. The 32-bit implementation of Aptio can be found on Efinity motherboards (by MSI), and we are expecting UEFI 2.x implementation on MSI 45 boards very soon. Since UEFI standard defines exact binary interface, standalone UEFI drivers and applications are portable between various implementations. All version of standard are also backward compatible. The UEFI standard also supports old-style boot via 16-bit real mode code, so it can be used with OSes that don't have UEFI support, but in this case UEFI runtime drivers doesn't work. So, most motherboard has both old school BIOS and UEFI implementation. [4]

1.3What is UEFI?

UEFI (Unified Extensible Firmware Interface) is a specification that defines an interface between a PCs firmware and an operating system. It replaces or can work in concert with the Basic Input/output System (BIOS) firmware that PCs have traditionally used. For Windows 8, a key part of this specification is Secure Boot, which protects the PC from malware by allowing only authorized boot loaders to run when the computer starts. UEFI Secure Boot was created to enhance security in the pre-boot environment. UEFI Forum members developed the UEFI specification, an interface framework that affords firmware, operating system and hardware providers a defence against potential malware attacks. [5] Without UEFI Secure Boot, malware developers can more easily take advantage of several pre-boot attack points, including the system-embedded firmware itself, as well as the interval between the firmware initiation and the loading of the operating system. Secure Boot helps firmware, operating system and hardware providers cooperate to thwart the efforts of malware developers.

1.4The most common misperceptions about UEFI and UEFI Secure Boot

Several misperceptions about UEFI Secure Boot, its intended uses, requirements and application exist within the technology and end-user community. A few of the most common are outlined below and in greater depth throughout this paper. False: UEFI Secure Boot is an attempt to lock platforms to software from specific vendors and block operating systems and software from others. False: UEFI Secure Boot requires a TPM chip, as described by the Trusted Computing Group (TCG), and TCG controls the UEFI specification. False: UEFI Secure Boot requires a specific implementation by computer manufacturers and operating system vendors. [6]

1.5Standard

UEFI is the moniker for industry standards group, the UEFI Forum, that is responsible for the governance of UEFI specifications. Furthermore, within the UEFI organization, there are several groups. First, the UEFI Specification Working Groups (USWG) manages the evolution of the main interface document. Today, the UEFI 2.1 specification represents the latest version.2


Dong Wei - UEFI What is it Wei - UEFI_What is...Agenda • Introduction • Background%Information • Specification • Summary • MondaySchedule UEFI%Plugfest%– March%2017 2

USWG Differences Between UEFI 2.0 and UEFI 2.1

Dong Wei - UEFI What is it · Agenda • Introduction • Background%Information • Specification • Summary • MondaySchedule UEFI%Plugfest%– March%2017 2

UEFI Porting Techniques on ARM SoCs · 01/06/2011  · •Introduction •Power-on Process •Boot to OS •Porting Guidelines •Summary UEFI Spring Summit – March 2013 2 . Introduction

Marrying U-Boot, UEFI and grub · 2017. 12. 14. · UEFI boot flow UEFI NVRAM sda2/foo.efi mmc0/bar.efi eth0/dhcp4

Implementing APEI with UEFI - Intel® UEFI Community Resource

The UEFI Mini-Summit...presented by The UEFI Mini-Summit Linux Community’s Guide to UEFI Introduction by: Dong Wei –HP Jeff Bobzin –Insyde Software August 22, 2014Updated 2011-06-01

UEFI / Framework Special Topic Slide 1 UEFI Drivers UEFI / Framework Special Topic Copyright © 2007 Intel Corporation

UEFI and Dreamboot - HITB - Sebastien Kaczmarek...UEFI and Dreamboot S ebastien Kaczmarek [email protected] @deesse k. UEFI UEFI and developmentUEFI and Windows DreambootConclusion

UEFI Summer Plugfest 2011 Pres5 UEFI... · Abstract data LinuxCon EU 2015 2 •UEFI Development in an Open Source Ecosystem –UEFI technology Open source development progression

Improving Platform Security with UEFI Secure Boot and UEFI ... · Improving Platform Security with UEFI Secure Boot and UEFI Variables UEFI Spring Plugfest –March 29-31, 2016 Presented

UEFI Tutorial 8/29/12 - Linux Plumbers Conf Tutorial 8/29/12 Harry Hsiung Intel Corp 2 Plumbers conference 2012 Agenda •UEFI Basics •UEFI security features •UEFI development

UEFI Specification and firmware Update Versions of UEFI ...odm.ubuntu.com/uds-q/uefi/Ubuntu_UDS_p_5_5_12.pdf · •UEFI Specification and firmware Update •Versions of UEFI and reference

Bios to Uefi on Non-uefi Pc

UEFI Self-Certification Test (SCT) · presented by UEFI Self-Certification Test (SCT) UEFI Summer Plugfest –July 6-9, 2011 Presented by Dong Wei (HP) & Harry Hsiung (Intel) UEFI

Replacing VGA, GOP implementation for UEFI · 2013-09-25 · presented by Replacing VGA, GOP implementation for UEFI UEFI Summer Plugfest –July 6-9, 2011 Presented by AMD UEFI Plugfest

Pxe Uefi Manual

UEFI Development Update - Unified Extensible … by UEFI Development Update UEFI Summer Summit – July 16-20, 2012 Presented by Mark Doran (Intel Corporation) UEFI Summer Summit –

UEFI Security Enhancements · 6/1/2011  · UEFI Security Enhancements UEFI Fall Plugfest –October 24-27, 2011 Presented by Kevin Davis (Insyde Software) UEFI Plugfest –October

UEFI presentation

UEFI Overview Unified Extensible Firmware Interface (UEFI) Framework UEFI Overview Intel SSG/SSD/UEFI

Clarifying the Ten Most Common Misconceptions About UEFI · UEFI FORUM WHITE PAPER Clarifying the Ten Most Common Misconceptions About UEFI 3 INTRODUCTION Often, the source of a misconception

VIA UEFI Flash V2.2.8 for DOS Environmentcdn.viaembedded.com/products/docs/amos-3005/user... · VIA UEFI Flash V2.2.8 for DOS Environment . VEPD-ES-DB-0002 2 History: Version Date

UEFI BizClient

Signing UEFI Applications and Drivers for UEFI … · Signing UEFI Applications and Drivers for UEFI Secure ... Figure 1 Authenticated Variable Layout ... Figure 7 Checking the Value

White Paper UEFI Plugfest 2015 - Challenges for UEFI and the Cloud

Implementing Platform Secrutity with UEFI · 2011. 9. 7. · Implementing Platform Security with UEFI . PTAS004 . Dong Wei, VP, UEFI Forum, ... – Published a UEFI Winter 2012 Plugfest

UEFI Port to RISC-V Processor Architecture · 6/1/2011  · •Introduction •RISC-V UEFI port on EDKII •Spec changes for RISC-V •Appendix UEFI Plugfest –March 2016 2. RISC

Marrying U-Boot, UEFI and grub_UEFI_and_grub.pdf · Marrying U-Boot, UEFI and grub. About Me ... EFI Runtime Data Console Boot Services Runtime Services Tables UEFI. UEFI boot flow

UEFI Development Resources€¦ · 6/1/2011  · UEFI Development Resources UEFI Winter Plugfest – February 20-24, 2012 Presented by Brian Richardson, Intel Corporation UEFI Plugfest

Introduction & Update...presented by Introduction & Update UEFI Spring Plugfest – May 8-10, 2012 Andrew N. Sloss (ARM) UEFI Plugfest – May 2012 1 Updated 2011-06-01Facts •Processors

Signing UEFI Applications and Drivers for UEFI …gschwinds.net/cache/SigningUEFIImages-1.31.pdfRevision History ii Contents 3 1 Secure Booting UEFI Drivers and Applications 5 1.1

Play with UEFI

LinuxBoot Integration With UEFI• Linux OS boot is very flexible • Linux UEFI needs can be smaller than UEFI 2.6 minimum requirements • Proposal: reduce minimum requirements (UEFI

2017 Digital Signage - advcloudfiles.advantech.com · ... AMI uEFI 64 Mbit AMI uEFI 128 Mbit AMI uEFI 128 Mbit AMI uEFI 128Mbit AMI uEFI 64 Mbit AMI ... Technology LP-DDR3L-1066MHz