Design And Implementation Of Trusted UEFI BIOS System Testing Program

UEFI BIOS is a new pre-boot platform with standardized, modular and other advantages of the C language. It can support for multiple operating system boot before the underlying application. And it assumes a variety of extensions configuration, commissioning, management, network and so on. With the increasing of BIOS chip module function and capacity, more and more security risks highlight in UEFI BIOS platforms. Compared to other component modules, BIOS system status is more prominent in trusted computer, how to use test tools and test methods to verify BIOS credibility will be the focus areas and hot spots in UEFI BIOS.Through the learning of UEFI BIOS framework and process technology, tease out the principles to achieve the various stages of the system startup process safety programs from the use of critical hardware TPM chip working mechanism, credible algorithms, software implementation aspects. And for the lack of protection of its own security systems, refresh chip mechanism vulnerable to destruction of the virus, malicious code been added to endanger the safety of the system, security issues on configuration been used by remote attackers and other hidden spots, summarize the capabilities of trusted BIOS that protecting data, verifying the identity, integrity measurement and report storage. Combine the use of test technology strategy with BIOS security scheme in principle, to design and implement a credible verification BIOS Bit Locker functionality without network state, EFI file integrity verification, under WHCK trusted BIOS functional verification environment and BitLocker NKP functional verification test under network status.A test environment is set up based on test cases under different platforms, different operating systems, different versions of the BIOS combinations. Test tools, software, script commands to perform testing tasks are used. Manual and automated test form is combined with smoke testing, localization testing, black box testing, regression testing and other testing methods to verify the credibility of BIOS in each environment and analyze the test results.