保障固件供应链安全的五项最佳编码实践

2023年6月16日

美国国土安全部和商务部在一份联合报告中指出:“固件构成了一个庞大且不断扩大的攻击面。”这份2022年发布的报告是对2021年网络安全行政命令的回应,报告指出了固件供应链中存在的重大漏洞。与其他攻击相比,固件攻击具有独特的优势,因为它们能够执行恶意代码,而操作系统和大多数安全解决方案都无法检测到这些代码。

所有设备——无论是服务器、台式机、移动设备还是联网设备——都包含固件,而固件攻击通常是通过固件更新引入恶意代码。这种漏洞的存在是因为固件从创建到分发的整个过程中都可能被篡改,而启用固件的组件则贯穿整个供应链。LoJax和 MoonBounce就是UEFI固件攻击的例子,它们不仅存在于包含启动固件的非易失性 SPI 闪存中,而且执行权限甚至高于操作系统内核。单个被攻破的设备就可能被网络犯罪分子用作入口,造成数据泄露,从而给企业带来经济和声誉损失。

加强固件安全可减少供应链攻击面

虽然没有一种万能的办法可以确保供应链中固件的安全,但以下五种最佳编码实践可以应用于提高整个供应链中固件的安全性。

1. 安全设计方法

固件开发的早期阶段就应融入安全性。在开发周期的早期阶段识别并实施安全措施,是部署固件前预防安全漏洞的一种经济有效的方法。优秀的开发人员能够理解硬件设计,考虑潜在的安全风险,并实施预防措施。如果硬件本身也注重安全性,则固件安全性将得到进一步提升。诸如硬件信任根之类的组件可以检测并保护固件免受攻击。

2. 测试与验证

开发和使用能够充分利用静态和动态测试工具的测试计划至关重要。静态工具有助于识别不良编码实践并提高代码质量。动态工具则通过各种技术(例如黑盒测试、渗透测试和压力测试等)帮助识别运行时环境中的漏洞。输入验证、内存安全以及针对威胁模型中指定的威胁向量的测试,都是完善的测试和验证计划的组成部分。

3. 利用源代码控制和协作

源代码控制系统使开发人员能够维护变更历史记录、实施自动化测试并实现可复现的构建。优秀的源代码控制系统促进了现代固件开发实践,将工作分解成更小的部分,以便与团队的其他工作频繁集成。“尽早提交,频繁推送”的理念,以及团队成员和其他利益相关者之间的持续协作,确保固件满足需求,并为安全审查和同行评审铺平道路。

4.实施软件物料清单(SBOM)

维护固件物料清单正日益成为增强固件安全性的必要工具,因为它能提供固件供应链的完整视图。这将使开发人员及其组织能够了解固件及其第三方组件相关的潜在安全风险,并使他们能够就固件供应链做出明智的决策。

5. 维护固件安全生态系统

即使开发出安全固件后,仍需维护一个涵盖开发者、固件和客户的生态系统。开发者需要及时了解最新的开发趋势、技术和工具,以便不断提升自身知识、技能和最终产品。此外,开发者还需要便捷的漏洞报告和修复机制,以便及时实施固件更新。

漏洞不可避免,但最佳编码实践可以最大限度地减少漏洞。

保护固件最终用户需要一个完善的、系统化的、以安全为先的生态系统,该生态系统围绕固件构建。通过安全设计理念以及开发和测试方面的最佳实践,可以提高固件在整个供应链中的安全性。该生态系统还必须包含相关功能,以便在发现潜在漏洞时向下游利益相关者发出警报,并提供动态固件更新,使用户能够在发现漏洞后立即自动更新固件。

凭借在为计算机行业开发和交付固件方面的深厚经验,AMI 拥有独特的优势,能够开发、部署固件并帮助保护整个供应链(包括云计算、电信、汽车行业、边缘计算等)的安全。

要了解有关 AMI 如何保护您的平台固件的更多信息,请访问AMI 零信任固件

 

值得信赖,因为关键事项

AMI 是您在高风险创新领域值得信赖的低风险合作伙伴。我们的固件解决方案能够在关键时刻提升性能、可靠性并缩短产品上市时间。

选择 AMI,您将获得深厚的专业知识、久经考验的稳定性以及贯穿整个开发过程的实践支持。联系我们,了解 AMI 固件解决方案如何帮助您降低风险、简化复杂性并自信地扩展规模。

翻译强力驱动

下载许可协议

本声明专门针对本网站 (ami.com) 或任何其他由 AMI 所有、运营、许可或控制的网站上提供的软件。

 任何可从本服务器下载的软件(“软件”)均为 AMI 和/或其供应商的版权作品。软件的使用受随附或包含于软件中的最终用户许可协议(如有)(“许可协议”)条款的约束。最终用户必须首先同意许可协议的条款,才能安装任何随附或包含许可协议的软件。

 本软件仅供最终用户根据许可协议下载使用。任何违反许可协议的软件复制或分发行为均属违法,并将受到严厉的民事和刑事处罚。违者将依法受到最严厉的法律制裁。

 在不限制前述规定的前提下,严禁将软件复制或再复制到任何其他服务器或位置以进行进一步复制或再分发,除非此类复制或再分发已由随附该软件的许可协议明确允许。

 THE SOFTWARE IS WARRANTED, IF AT ALL, ONLY ACCORDING TO THE TERMS OF THE LICENSE AGREEMENT. EXCEPT AS WARRANTED IN THE LICENSE AGREEMENT, AMI HEREBY DISCLAIMS ALL WARRANTIES AND CONDITIONS WITH REGARD TO THE SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES AND CONDITIONS OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE AND NON-INFRINGEMENT.

 FOR YOUR CONVENIENCE, AMI MAY MAKE AVAILABLE ON THIS SERVICE OR IN ITS SOFTWARE PRODUCTS, TOOLS AND UTILITIES FOR USE AND/OR DOWNLOAD. AMI DOES NOT MAKE ANY ASSURANCES WITH REGARD TO THE ACCURACY OF THE RESULTS OR OUTPUT THAT DERIVES FROM SUCH USE OF ANY SUCH TOOLS AND UTILITIES. PLEASE RESPECT THE INTELLECTUAL PROPERTY RIGHTS OF OTHERS WHEN USING THE TOOLS AND UTILITIES MADE AVAILABLE ON THIS SERVICE OR IN AMI SOFTWARE PRODUCTS.

 RESTRICTED RIGHTS LEGEND. Any Software which is downloaded from this Server (ami.com) any other AMI owned, operated, licensed or controlled site for or on behalf of the United States of America, its agencies and/or instrumentalities ("U.S. Government"), is provided with Restricted Rights. Use, duplication, or disclosure by the U.S. Government is subject to restrictions as set forth in subparagraph (c)(1)(ii) of the Rights in Technical Data and Computer Software clause at DFARS 252.227-7013 or subparagraphs (c)(1) and (2) of the Commercial Computer Software - Restricted Rights at 48 CFR 52.227-19, as applicable. Manufacturer is AMI 3095 Satellite Boulevard, Building 800, Suite 425, Duluth, GA 30096.

NOTICE SPECIFIC TO DOCUMENTS AVAILABLE ON THIS WEBSITE

 Permission to use Documents (such as white papers, press releases, datasheets and FAQs) from this server (ami.com) any other AMI owned, operated, licensed or controlled site ("Server") is granted, provided that (1) the below copyright notice appears in all copies and that both the copyright notice and this permission notice appear, (2) use of such Documents from this Server is for informational and non-commercial or personal use only and will not be copied or posted on any network computer or broadcast in any media and (3) no modifications of any Documents are made. Educational institutions ( specifically K-12, universities and state community colleges) may download and reproduce the Documents for distribution in the classroom. Distribution outside the classroom requires express written permission. Use for any other purpose is expressly prohibited by law and may result in severe civil and criminal penalties. Violators will be prosecuted to the maximum extent possible.

 Documents specified above do not include the design or layout of the ami.com website or any other AMI owned, operated, licensed or controlled site. Elements of AMI websites are protected by trade dress, trademark, unfair competition and other laws and may not be copied or imitated in whole or in part. No logo, graphic, sound or image from any AMI website may be copied or retransmitted unless expressly permitted by AMI.

 AMI AND/OR ITS RESPECTIVE SUPPLIERS MAKE NO REPRESENTATIONS ABOUT THE SUITABILITY OF THE INFORMATION CONTAINED IN THE DOCUMENTS AND RELATED GRAPHICS PUBLISHED ON THIS SERVER FOR ANY PURPOSE. ALL SUCH DOCUMENTS AND RELATED GRAPHICS ARE PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. AMI AND/OR ITS RESPECTIVE SUPPLIERS HEREBY DISCLAIM ALL WARRANTIES AND CONDITIONS WITH REGARD TO THIS INFORMATION, INCLUDING ALL IMPLIED WARRANTIES AND CONDITIONS OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE AND NON-INFRINGEMENT. IN NO EVENT SHALL AMI AND/OR ITS RESPECTIVE SUPPLIERS BE LIABLE FOR ANY SPECIAL, INDIRECT OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF INFORMATION AVAILABLE FROM THIS SERVER.

 THE DOCUMENTS AND RELATED GRAPHICS PUBLISHED ON THIS SERVER COULD INCLUDE TECHNICAL INACCURACIES OR TYPOGRAPHICAL ERRORS. CHANGES ARE PERIODICALLY ADDED TO THE INFORMATION HEREIN. AMI AND/OR ITS RESPECTIVE SUPPLIERS MAY MAKE IMPROVEMENTS AND/OR CHANGES IN THE PRODUCT(S) AND/OR THE PROGRAM(S) DESCRIBED HEREIN AT ANY TIME.

NOTICES AND PROCEDURE FOR MAKING CLAIMS OF COPYRIGHT INFRINGEMENT

 Pursuant to Title 17, United States Code, Section 512(c)(2), notifications of claimed copyright infringement should be sent to Service Provider's Designated Agent. ALL INQUIRIES NOT RELEVANT TO THE FOLLOWING PROCEDURE WILL NOT RECEIVE A RESPONSE.

 See Notice and Procedure for Making Claims of Copyright Infringement.

LINKS TO THIRD PARTY SITES

 THE LINKS IN THIS AREA WILL LET YOU LEAVE AMI'S SITE. THE LINKED SITES ARE NOT UNDER THE CONTROL OF AMI AND AMI IS NOT RESPONSIBLE FOR THE CONTENTS OF ANY LINKED SITE OR ANY LINK CONTAINED IN A LINKED SITE, OR ANY CHANGES OR UPDATES TO SUCH SITES. AMI IS NOT RESPONSIBLE FOR WEBCASTING OR ANY OTHER FORM OF TRANSMISSION RECEIVED FROM ANY LINKED SITE. AMI IS PROVIDING THESE LINKS TO YOU ONLY AS A CONVENIENCE, AND THE INCLUSION OF ANY LINK DOES NOT IMPLY ENDORSEMENT BY AMI OF THE SITE.

UNSOLICITED IDEA SUBMISSION POLICY

 AMI及其员工、代理和/或子公司均不接受或考虑任何未经请求的创意,包括但不限于新广告活动、新促销活动、新产品或技术、工艺流程、材料、营销计划或新产品名称的创意。严禁向AMI提交任何原创创意作品、样品、演示或其他作品。如AMI收到任何未经请求的创意材料,该等材料将被销毁,AMI对发送者因此遭受的任何直接或间接损失概不负责,且AMI无义务将该等材料视为机密或专有信息。双方明确理解,AMI禁止未经请求的创意提交政策的目的是为了防止第三方基于AMI开发的创意、产品或其他材料(该等创意、产品或其他材料可能与AMI收到的未经请求的创意、产品或其他材料相似或相同)而对AMI提出侵权索赔。

反馈和信息

 您在本网站提供的任何反馈均将被视为非保密信息。AMI 可以不受限制地使用此类信息。

条款及细则

请对此翻译评分
您的反馈将用于改进谷歌翻译