Jerry Bryant

See how Intel provides the safest platforms for executing software in 2026, read the Intel Platform Security report here: ms.spr.ly/6013Qt4qU

@anders_fogh and I chat about the proactive efforts behind the internal discovery and mitigation of all of the hardware vulnerabilities Intel disclosed in 2024 (intel.com/securityreport). Blog: intel.ly/4iCUeAf Video: youtu.be/hnyKOJiqqsw

In this episode of Chips & Salsa, @SecurityCRob and I talk to @anders_fogh and @lavados (Daniel Gruss) about their @BlackHatEvents 2024 talk "Microarchitecture vulnerabilities: Past, Present, and Future. youtu.be/wxmTKbd6F0U?fe…

@SecurityCRob and I talk to folks from Intel, MITRE, AMD, Cycuity, and Riscure about collaborating to create four new hardware CWEs for transient-execution weaknesses in this episode of Chips & Salsa. More in our blog: intel.ly/3TcGdix

@vincentzimmer @SecurityCRob Future episode @vincentzimmer!

@jerry_Intel @SecurityCRob Nice talk. Too bad the linked blog didn't reference the early work we did on integrating fuzzing into SIMICS ieeexplore.ieee.org/document/92186… that was leveraged for TSFFS.

Unified fuzzing from boot all the way to user space in one tool: Target Software Fuzzer for the Intel Simics Simulator (TSFFS). What is "Tisyphus" in 59 seconds with @SecurityCRob, Brandon Marken, and Rowan Hart of Intel. Read the blog here: bit.ly/4bPCj6T

If hardware isn’t secure, then a system can’t be either – and technology vendors have an essential role to play. 🔒 Intel’s long-standing commitment to security has never been stronger. 💪🏽 Check out Intel’s 2023 Product Security Report. intel.ly/3OTFm3L

According to ABI Research, Intel is #1 in the silicon industry for product security assurance. Read more about that and get the 2023 Intel Product Security Report: bit.ly/3uEHhT6

Intel's February 13, 2024 Patch Tuesday in 59 seconds with myself and @SecurityCRob

Quick overview of the Intel Security Advisories for February 2024 with @SecurityCRob community.intel.com/t5/Blogs/Produ…

Information about INTEL-SA-00950, Redundant Prefix Issue (AKA "Reptar") community.intel.com/t5/Blogs/Produ…

Direct link to the paper: intel.com/content/www/us…

We've just published a new paper covering firmware signing keys to address some confusion around the purpose of private keys that have previously been leaked. All known Intel keys in these leaks are pre-production keys. Read more about what those are. community.intel.com/t5/Blogs/Produ…

Introducing AEX-Notify, a new ISA extension incorporated into the SGX spec to help thwart precise single-stepping attacks through interrupt awareness for Intel SGX enclaves. Awesome collaboration between Intel and academia! community.intel.com/t5/Blogs/Produ…

Learn more about GDS/Downfall and watch our interview with @flowyroll (Daniel Moghimi) along with guidance for customers from Intel VP Vivek Tiwari. community.intel.com/t5/Blogs/Produ…

Our latest MCU released last week had [INTEL-SA-NA] listed as the purpose which has led to confusion. We've added a note to clarify that there are no vulnerabilities addressed in microcode-20230512. These are functional updates. github.com/intel/Intel-Li…

@JohnLoucaides @guido_bertoni @KirkBrannock @securityweekly @eclypsium Also, catch the interview with did with Intel's Enrico Carrieri who is one of the experts here: youtu.be/1jebfW7Feeg

@guido_bertoni @jerry_Intel @KirkBrannock @securityweekly @eclypsium Reading tianocore and coreboot code also help, but not for everyone... ;-)

This is an extremely important fact relative to the recent breach and leak at MSI.

@JohnLoucaides @guido_bertoni @KirkBrannock @securityweekly @eclypsium Good reference to learn more about Intel debug technology: intel.com/content/www/us…

To be clear, Intel Boot Guard signing keys are generated/managed by each OEM independently.