Topic: Chip-level vulnerability testing with CHIPSEC & LuvOSSpeaker: Jeff Struik
CPE Hours: 1
Background:
The continued focus on the importance of supply chain authenticity and security has driven legislation/directives ranging from CMMC to NDAA Section 889. This focus largely depends on non-technical mechanisms. Leveraging tools such as CHIPSEC and LuvOS further allow system developers to validate the configuration and authenticity of the components received through the supply chain.
Learning Objectives:
- Gain an understanding of available tools to evaluate hardware components.
- Identify misconfigurations in the BIOS/UEFI and related components
- See how awesome hardware-level security is
Speaker Bio:
Jeff Struik is the principal cybersecurity engineer for Cyber Strike Solutions, LLC. Jeff holds a DCS with a cybersecurity concentration from Colorado Technical University. He has been a cybersecurity professional since 2008, working for customers ranging from the Department of Defense to private healthcare and insurance firms. Jeff served in the U.S. Army as an AH-64D Apache helicopter electrical and avionics technician for 10 years and was discharged as the result of an injury in 2011. During that time he developed a love for technology and understanding how it works. He also developed a deep interest in understanding how to make technology misbehave and what steps are necessary to prevent such behavior.
_past_events