Can you still trust your network card? - Agence nationale de la ...
Can you still trust your network card? - Agence nationale de la ...
Can you still trust your network card? - Agence nationale de la ...
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Real impact Controlling the host<br />
Countermeasures<br />
◮ use a patched firmware;<br />
◮ <strong>de</strong>activate ASF (not only in the BIOS);<br />
◮ filter ASF and RMCP UDP ports;<br />
◮ use an IOMMU on a supported OS;<br />
◮ <strong>de</strong>activate remote administration protocols, or<br />
◮ reserve remote administration to safe/separated <strong>network</strong>s.<br />
◮ nobody ever enabled ASF on a <strong>la</strong>ptop connected to Internet<br />
anyway<br />
◮ is it really safe to assume that?<br />
SGDSN/ANSSI – http://www.ssi.gouv.fr/<strong>trust</strong><strong>network</strong><strong>card</strong> 48/51