ACPI interpreter security

To: tech-kern%netbsd.org@localhost, tech-security%netbsd.org@localhost
Subject: ACPI interpreter security
From: Thor Lancelot Simon <tls%panix.com@localhost>
Date: Mon, 15 Oct 2012 23:26:45 -0400

I've been looking recently at a variety of firmware rootkit sample code,
and discussions of how to mitigate it.

I am particuarly intrigued by the occasional mention I see that some
operating systems "sandbox" the ACPI AML interpreter, executing it with
most of the kernel memory unmapped.

How hard would it be to do this in NetBSD?

-- 
 Thor Lancelot Simon                                          
tls%panix.com@localhost
   But as he knew no bad language, he had called him all the names of common
 objects that he could think of, and had screamed: "You lamp!  You towel!  You
 plate!" and so on.              --Sigmund Freud

Follow-Ups:
- Re: ACPI interpreter security
  - From: Jean-Yves Migeon

Prev by Date: Re: Kernel based virtual machine
Next by Date: Re: ACPI interpreter security
Previous by Thread: excising struct componentname from the namecache
Next by Thread: Re: ACPI interpreter security
Indexes:

Home | Main Index | Thread Index | Old Index