Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

This is an archive
(replace .gov by .rip)

SP 800-193 (DRAFT)

Platform Firmware Resiliency Guidelines

Date Published: May 2017
Comments Due: July 14, 2017 (public comment period is CLOSED)
Email Questions to: sp800-193comments@nist.gov

Author(s)

Andrew Regenscheid (NIST)

Announcement

NIST announces the public comment release of Draft Special Publication 800-193, Platform Firmware Resiliency Guidelines. The platform is a collection of fundamental hardware and firmware components needed to boot and operate a computer system. This document provides technical guidelines and recommendations supporting resiliency of platform firmware and data against potentially destructive attacks.  These draft guidelines promote resiliency in the platform by describing security mechanisms for protecting the platform against unauthorized changes, detecting unauthorized changes that occur, and secure recovery from attacks. This document is intended to guide implementers, including system manufacturers and and component suppliers, on how to use these mechanisms to build a strong security foundation into platforms.

Abstract

Keywords

BIOS; Code signing; Firmware; Option ROM; Platform Firmware
Control Families

None selected

Documentation

Publication:
Draft SP 800-193

Supplemental Material:
Comment Template (xls)