{"guid":"T7aunKcOFBLl5b8IGVqJWQ","title":"Attacks on UEFI security, inspired by Darth Venamis's misery and Speed Racer","subtitle":null,"slug":"31c3_-_6129_-_en_-_saal_2_-_201412282030_-_attacks_on_uefi_security_inspired_by_darth_venamis_s_misery_and_speed_racer_-_rafal_wojtczuk_-_corey_kallenberg","link":"http://events.ccc.de/congress/2014/Fahrplan/events/6129.html","description":"On modern Intel based computers there exists two powerful and protected code regions: the UEFI firmware and System Management Mode (SMM). UEFI is the replacement for conventional BIOS and has the responsibility of initializing the platform. SMM is a powerful mode of execution on Intel CPUs that is even more privileged than a hypervisor. Because of their powerful positions, SMM and UEFI are protected by a variety of hardware mechanisms. In this talk, Rafal Wojtczuk and Corey Kallenberg team up to disclose several prevalent vulnerabilities that result in SMM runtime breakin as well as arbitrary reflash of the UEFI firmware.\n","original_language":"eng","persons":["Rafal Wojtczuk","Corey Kallenberg"],"view_count":4124,"promoted":false,"date":"2014-12-28T20:30:00.000+01:00","release_date":"2014-12-29T01:00:00.000+01:00","updated_at":"2026-05-17T18:30:06.054+02:00","tags":["Security \u0026 Hacking"],"length":3619,"duration":3619,"thumb_url":"https://static.media.ccc.de/media/congress/2014/6129-hd.jpg","poster_url":"https://static.media.ccc.de/media/congress/2014/6129-hd_preview.jpg","timeline_url":"https://static.media.ccc.de/media/congress/2014/T7aunKcOFBLl5b8IGVqJWQ-timeline.jpg","thumbnails_url":"https://static.media.ccc.de/media/congress/2014/T7aunKcOFBLl5b8IGVqJWQ-thumbnails.vtt","frontend_link":"https://media.ccc.de/v/31c3_-_6129_-_en_-_saal_2_-_201412282030_-_attacks_on_uefi_security_inspired_by_darth_venamis_s_misery_and_speed_racer_-_rafal_wojtczuk_-_corey_kallenberg","url":"https://api.media.ccc.de/public/events/T7aunKcOFBLl5b8IGVqJWQ","conference_title":"31C3: a new dawn","conference_url":"https://api.media.ccc.de/public/conferences/31c3","related":[{"event_id":2144,"event_guid":"29aecfd7-2e44-4f49-ab86-29b5e0877325","weight":2},{"event_id":2178,"event_guid":"7G4FQIXg2eb7D6F_jNwuxA","weight":2},{"event_id":2302,"event_guid":"rHjqtfbslD_ucUr8kW5wcQ","weight":5},{"event_id":2811,"event_guid":"fa0727ab-81a7-4197-bc7d-0ce5e9dc4526","weight":4},{"event_id":2822,"event_guid":"4c070a2c-0558-48b8-b612-b8507a51154e","weight":5},{"event_id":2902,"event_guid":"930673b3-4f75-40eb-8be5-574469c3920f","weight":16},{"event_id":3172,"event_guid":"pRpQ2EFbbSOQQpmGD5scUw","weight":3},{"event_id":3607,"event_guid":"64c07cb5-ec19-4972-a2c8-96c0e0df83c6","weight":3},{"event_id":4833,"event_guid":"e1a60f7b-6a56-4dce-ab3a-c686fa940aa8","weight":4},{"event_id":4856,"event_guid":"c5bfac96-8290-438a-a47a-ebdbf0ab5365","weight":3}],"recordings":[{"size":null,"length":null,"mime_type":"application/x-subrip","language":"eng","filename":"DRAFT_31c3-6129-en-Attacks_on_UEFI_security_inspired_by_Darth_Venamiss_misery_and_Speed_Racer.en_DRAFT.srt","state":"todo","folder":"","high_quality":true,"width":null,"height":null,"updated_at":"2022-01-15T19:03:23.826+01:00","recording_url":"https://cdn.media.ccc.de/congress/2014/DRAFT_31c3-6129-en-Attacks_on_UEFI_security_inspired_by_Darth_Venamiss_misery_and_Speed_Racer.en_DRAFT.srt","url":"https://api.media.ccc.de/public/recordings/50962","event_url":"https://api.media.ccc.de/public/events/T7aunKcOFBLl5b8IGVqJWQ","conference_url":"https://api.media.ccc.de/public/conferences/31c3"},{"size":82,"length":3611,"mime_type":"audio/mpeg","language":"eng","filename":"31c3-6129-en-Attacks_on_UEFI_security_inspired_by_Darth_Venamiss_misery_and_Speed_Racer_mp3.mp3","state":"downloaded","folder":"mp3","high_quality":true,"width":null,"height":null,"updated_at":"2014-12-30T00:21:05.670+01:00","recording_url":"https://cdn.media.ccc.de/congress/2014/mp3/31c3-6129-en-Attacks_on_UEFI_security_inspired_by_Darth_Venamiss_misery_and_Speed_Racer_mp3.mp3","url":"https://api.media.ccc.de/public/recordings/5469","event_url":"https://api.media.ccc.de/public/events/T7aunKcOFBLl5b8IGVqJWQ","conference_url":"https://api.media.ccc.de/public/conferences/31c3"},{"size":409,"length":3619,"mime_type":"video/mp4","language":"eng","filename":"31c3-6129-en-Attacks_on_UEFI_security_inspired_by_Darth_Venamiss_misery_and_Speed_Racer_hd.mp4","state":"downloaded","folder":"h264-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2016-02-03T14:07:08.124+01:00","recording_url":"https://cdn.media.ccc.de/congress/2014/h264-hd/31c3-6129-en-Attacks_on_UEFI_security_inspired_by_Darth_Venamiss_misery_and_Speed_Racer_hd.mp4","url":"https://api.media.ccc.de/public/recordings/5233","event_url":"https://api.media.ccc.de/public/events/T7aunKcOFBLl5b8IGVqJWQ","conference_url":"https://api.media.ccc.de/public/conferences/31c3"},{"size":389,"length":3619,"mime_type":"video/webm","language":"eng","filename":"31c3-6129-en-Attacks_on_UEFI_security_inspired_by_Darth_Venamiss_misery_and_Speed_Racer_webm-hd.webm","state":"downloaded","folder":"webm-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2016-02-03T14:07:45.181+01:00","recording_url":"https://cdn.media.ccc.de/congress/2014/webm-hd/31c3-6129-en-Attacks_on_UEFI_security_inspired_by_Darth_Venamiss_misery_and_Speed_Racer_webm-hd.webm","url":"https://api.media.ccc.de/public/recordings/5618","event_url":"https://api.media.ccc.de/public/events/T7aunKcOFBLl5b8IGVqJWQ","conference_url":"https://api.media.ccc.de/public/conferences/31c3"},{"size":156,"length":3620,"mime_type":"video/mp4","language":"eng","filename":"31c3-6129-en-Attacks_on_UEFI_security_inspired_by_Darth_Venamiss_misery_and_Speed_Racer_sd.mp4","state":"downloaded","folder":"h264-sd","high_quality":false,"width":720,"height":576,"updated_at":"2016-02-03T14:07:33.366+01:00","recording_url":"https://cdn.media.ccc.de/congress/2014/h264-sd/31c3-6129-en-Attacks_on_UEFI_security_inspired_by_Darth_Venamiss_misery_and_Speed_Racer_sd.mp4","url":"https://api.media.ccc.de/public/recordings/5532","event_url":"https://api.media.ccc.de/public/events/T7aunKcOFBLl5b8IGVqJWQ","conference_url":"https://api.media.ccc.de/public/conferences/31c3"},{"size":41,"length":3610,"mime_type":"audio/opus","language":"eng","filename":"31c3-6129-en-Attacks_on_UEFI_security_inspired_by_Darth_Venamiss_misery_and_Speed_Racer_opus.opus","state":"downloaded","folder":"opus","high_quality":true,"width":null,"height":null,"updated_at":"2014-12-29T20:31:44.328+01:00","recording_url":"https://cdn.media.ccc.de/congress/2014/opus/31c3-6129-en-Attacks_on_UEFI_security_inspired_by_Darth_Venamiss_misery_and_Speed_Racer_opus.opus","url":"https://api.media.ccc.de/public/recordings/5424","event_url":"https://api.media.ccc.de/public/events/T7aunKcOFBLl5b8IGVqJWQ","conference_url":"https://api.media.ccc.de/public/conferences/31c3"},{"size":128,"length":3619,"mime_type":"video/webm","language":"eng","filename":"31c3-6129-en-Attacks_on_UEFI_security_inspired_by_Darth_Venamiss_misery_and_Speed_Racer_webm-sd.webm","state":"downloaded","folder":"webm-sd","high_quality":false,"width":720,"height":576,"updated_at":"2016-02-03T14:07:42.912+01:00","recording_url":"https://cdn.media.ccc.de/congress/2014/webm-sd/31c3-6129-en-Attacks_on_UEFI_security_inspired_by_Darth_Venamiss_misery_and_Speed_Racer_webm-sd.webm","url":"https://api.media.ccc.de/public/recordings/5591","event_url":"https://api.media.ccc.de/public/events/T7aunKcOFBLl5b8IGVqJWQ","conference_url":"https://api.media.ccc.de/public/conferences/31c3"}]}