spispy: SPI flash device emulation

Cite

Related Material

Chaos Computer Club e.V.

Hudson, Trammell

Formal Metadata

Title

spispy: SPI flash device emulation

Subtitle

Open source tools for flash emulation and research

Title of Series

Chaos Communication Camp 2019

Number of Parts

102

Author

Hudson, Trammell

License

CC Attribution 4.0 International:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.

Identifiers

10.5446/43221 (DOI)

Publisher

Chaos Computer Club e.V.

Release Date

2019

Language

English

Content Metadata

Subject Area

Computer Science

Genre

Conference/Talk

Abstract

spispy is an open source hardware tool for emulating SPI flash chips that makes firmware development and boot security research easier. In this talk we'll discuss the challenges of interfacing on the SPI bus and emulating SPI devices, as well as demonstrate how to use it quickly debug issues with coreboot and how we used spispy to discover a critical class of TOCTOU vulnerabilities in secure boot systems like Intel BootGuard.