24-28 August 2020
US/Pacific timezone

System Firmware and Device Firmware Updates using Unified Extensible Firmware Interface (UEFI) Capsules

27 Aug 2020, 07:35
20m
Microconference2/Virtual-Room (LPC 2020)

Microconference2/Virtual-Room

LPC 2020

150
System Boot and Security MC System Boot and Security MC

Speaker

Harry Hsiung (Intel)

Description

Firmware is responsible for low-level platform initialization, establishing root-of-trust, and loading the operating system (OS). Signed UEFI Capsules define an OS-agnostic process for verified firmware updates, utilizing the root-of-trust established by firmware. The open source FmpDevicePkg in TianoCore provides a simple method to update system firmware images and device firmware images using UEFI Capsules and the Firmware Management Protocol (FMP).

This session describes the EFI Development Kit II (EDK II) capsule implementation, implementing FMP using FmpDevicePkg, creating Signed UEFI Capsules using open source tools, and an update workflow based on the Linux Vendor Firmware Service (fwupd.org).

I agree to abide by the anti-harassment policy I agree

Primary author

Presentation Materials