MSI firmware signing keys leaked (opens in new tab)

(github.com)

137 pointsseizethegdgap2y ago34 comments

34 comments

Is it wrong that my immediate reaction to this is, "Sweet, so I can finally do things with my board I was prevented from before!"

xbar2y ago

Not at all, in this case.

There is a giant pile of hardware in the world that relies on unsigned hardware. Meanwhile, MSI uses its hardware signing to hurt its customers.

Will some MSI users get tricked into using malicious firmware? Doubtless, eventually. That's sad. But not nearly as sad as the millions of users who can't use their own computers in a manner of their choosing.

Celebrate, without remorse.

rainsford2y ago

I get that argument, but I'm not sure you have the relative population sizes right. It seems a bit doubtful that millions of MSI users are interested in flashing custom firmware on their motherboards, but every user is potentially impacted by signed malware. Particularly since the firmware signing is a known thing and there's less restricted hardware available. People really interested in being able to do whatever they want with their hardware are presumably purchasing accordingly.

Like I said, I get the support for increased openness and freedom in hardware and the appeal that has to some users. But security is a feature that a lot of users (even power users) care about too, and it's bad when that feature breaks.

1 more reply

lakomen2y ago

It was mine as well.

They artificially limited both discrete and on board GPU being active at the same time in my GT72's BIOS.

hexagonwin2y ago

Does this mean that we can now custom firmwares (e.g. coreboot) on those MSI boards?

dawidpotocki2y ago

It was already possible.

https://docs.dasharo.com/variants/msi_z690/overview/

stavros2y ago

It's really fucked up that we can't disable secure boot on boards we've bought, and we have to hope their security is compromised instead. What would be the issue with requiring a very manual process to add my own CA to the board so I can load up whatever I want?

Ah, vendor lockin, got it.

whoopdedo2y ago

Well you're in luck then because MSI will just ignore SecureBoot for you.

https://news.ycombinator.com/item?id=34388533

mailey2y ago

I'm interested as well in finding out about being able to flash custom firmware. Is there any other resources to follow?

ewokone2y ago

I would love to learn more about that.

How would someone use those keys? What's beneficial, what could be useful possible cases for me? And Are my workstations in my company at risk?

leohonexus2y ago

If I recall correctly, at boot time CPUs retrieve the firmware along with a cryptographic signature that verifies the firmware came from the signer. Some boards choose to burn this signature into the hardware using e-fuses. If the signing key is leaked, that means someone can flash custom firmware into the chip and the CPU would be none the wiser, all while operating at Ring 0.

dist-epoch2y ago

CPU firmware (microcode) is signed by Intel, so it would not be affected by this leak, only motherboard firmware.

1 more reply

wkat42422y ago

Why were these keys not in a HSM I wonder..

bogantech2y ago

It's possible they did, in any case keys can be exported from HSMs to ensure availability in the event that your HSM becomes inoperable and needs to be replaced.

For example here are instructions on how to do so with a Thales HSM https://thalesdocs.com/gphsm/ptk/5.4/docs/Content/PTK-C_Admi...

Hackbraten2y ago

Whoa. Never would I have thought that a HSM allowed key exports.

I somehow assumed that real, non-toy HSMs involved dedicated generators as companion devices with heavily reduced attack surface, which generate and store private key material, are able to transfer it to the HSM proper (and to a paper backup), and are strictly kept offline after that.

Sometimes the world feels disappointing.

1 more reply

ties_2y ago

What is possible with a HSM depends on the policies of the HSM and key objects (e.g. with PKCS#11). Vendors limit the "most open" policy that you can apply. For example, a FIPS 140-2 level 3 module can not offer unbounded key export (https://security.stackexchange.com/a/83981).

Using a HSM does _not_ guarantee that keys can not be exported. But the converse also holds, a key that is managed by a HSM can not necessarily be exported.

wkat42422y ago

Yeah but if you invest in a HSM you're not going to leave the export passwords lying around of course. We have these Thales units too at work and there's a whole ritual around it. It's extremely unlikely that would happen.

josteink2y ago

Unfortunately this leak seems to be for Intel-based boards only, not the AMD ones :(

rasz2y ago

Intel BootGuard Keys? that sounds intriguing

j / k navigate · click thread line to collapse

34 comments

rkagerer2y ago

Is it wrong that my immediate reaction to this is, "Sweet, so I can finally do things with my board I was prevented from before!"

xbar2y ago

Not at all, in this case.

There is a giant pile of hardware in the world that relies on unsigned hardware. Meanwhile, MSI uses its hardware signing to hurt its customers.

Celebrate, without remorse.

rainsford2y ago

1 more reply

lakomen2y ago

It was mine as well.

They artificially limited both discrete and on board GPU being active at the same time in my GT72's BIOS.

hexagonwin2y ago

Does this mean that we can now custom firmwares (e.g. coreboot) on those MSI boards?

dawidpotocki2y ago

It was already possible.

https://docs.dasharo.com/variants/msi_z690/overview/

stavros2y ago

Ah, vendor lockin, got it.

whoopdedo2y ago

Well you're in luck then because MSI will just ignore SecureBoot for you.

https://news.ycombinator.com/item?id=34388533

mailey2y ago

I'm interested as well in finding out about being able to flash custom firmware. Is there any other resources to follow?

ewokone2y ago

I would love to learn more about that.

How would someone use those keys? What's beneficial, what could be useful possible cases for me? And Are my workstations in my company at risk?

leohonexus2y ago

dist-epoch2y ago

CPU firmware (microcode) is signed by Intel, so it would not be affected by this leak, only motherboard firmware.

1 more reply

wkat42422y ago

Why were these keys not in a HSM I wonder..

bogantech2y ago

It's possible they did, in any case keys can be exported from HSMs to ensure availability in the event that your HSM becomes inoperable and needs to be replaced.

For example here are instructions on how to do so with a Thales HSM https://thalesdocs.com/gphsm/ptk/5.4/docs/Content/PTK-C_Admi...

Hackbraten2y ago

Whoa. Never would I have thought that a HSM allowed key exports.

Sometimes the world feels disappointing.

1 more reply

ties_2y ago

Using a HSM does _not_ guarantee that keys can not be exported. But the converse also holds, a key that is managed by a HSM can not necessarily be exported.

wkat42422y ago

josteink2y ago

Unfortunately this leak seems to be for Intel-based boards only, not the AMD ones :(

rasz2y ago

Intel BootGuard Keys? that sounds intriguing

j / k navigate · click thread line to collapse