LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

LSS: Secure Boot

LSS: Secure Boot

Posted Sep 14, 2012 13:07 UTC (Fri) by kugel (subscriber, #70540)
Parent article: LSS: Secure Boot

I'm wondering why hibernation is even an issue.

Don't you need physical access to the machine to subvert the hibernation file? After all, the machine must be off so no running computer program on the hibernated machine can do it.

And the physical present user is trusted (and a physically present attacker can simply turn off secure boot), so to my understanding hibernate shouldn't be affected by secure boot.

Also: I'm fairly sure Windows will still have hibernate. If that's true then Microsoft would seem to agree with me thinking it's not an issue.

(Log in to post comments)

LSS: Secure Boot

Posted Sep 14, 2012 14:04 UTC (Fri) by hummassa (subscriber, #307) [Link]

> Don't you need physical access to the machine to subvert the hibernation file?

No, a piece of malware can create a subverted hibernation file and force-reboot the machine.

LSS: Secure Boot

Posted Sep 15, 2012 8:15 UTC (Sat) by kugel (subscriber, #70540) [Link]

Thanks. I have never seen this kind of attack

LSS: Secure Boot

Posted Sep 15, 2012 9:59 UTC (Sat) by khim (subscriber, #9252) [Link]

This attack only makes sense in secure-boot enhanced world. In any other world it's easier to just replace the kernel if you've reached the state where you can do raw disk access.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds