***
< [Home](https://github.com/SeanOhAileasa) | [README](https://github.com/SeanOhAileasa/cap-software-and-systems-security/blob/main/README.md) >

## CompTIA Cybersecurity Analyst (CySA+) - Course Material 2022
###### Topic: ``Hardware Assurance``
***

Course material for the ``CompTIA Cybersecurity Analyst (CySA+)`` module of the ``ICT Associate Apprenticeship (Cybersecurity)`` programme.

<a id="top"></a>
***
## Table of Contents
***

### [Hardware Assurance](#a) <br/><br/>

- [Hardware Assurance Best Practices](#b) <br/><br/> 
- [Supply Chain Assessment](#c) <br/><br/> 
    - [Vendor Due Diligence](#d) <br/><br/> 
        - [Due Diligence Questionnaire Checklist](#d) <br/><br/> 
    - [Hardware Source Authenticity](#e) <br/><br/> 
        - [Hardware Source Authenticity](#e) <br/><br/> 
    - [Trusted Foundry](#e) <br/><br/> 
        - [Defense Microelectronics Activity](#e) <br/><br/> 
            - [``DMEA``](#e) <br/><br/>  
    - [Hardware Root of Trust](#f) <br/><br/> 
        - [Embedded Cryptographic Module](#f) <br/><br/> 
            - [Endorse Trusted Execution](#f) <br/><br/> 
            - [Attest Boot Settings/Metrics](#f) <br/><br/> 
    - [Trusted Platform Module](#g) <br/><br/> 
        - [``TPM``](#g) <br/><br/> 
            - [Specification for Hardware-based Storage](#g) <br/><br/> 
                - [Digital Certificates](#g) <br/><br/> 
                - [Keys](#g) <br/><br/> 
                - [Hashed Passwords](#g) <br/><br/> 
                - [User/Platform ID Information](#g) <br/><br/>              
            - [Implementation](#g) <br/><br/> 
                - [Microprocessor](#g) <br/><br/> 
                    - [Unchangeable Asymmetric Private Key](#g) <br/><br/> 
                        - [Create Subkeys](#g) <br/><br/> 
    - [Hardware Security Module](#h) <br/><br/> 
        - [``HSM``](#h) <br/><br/> 
            - [Appliance](#h) <br/><br/> 
                - [Generating/Storing Cryptographic Keys](#h) <br/><br/> 
            - [Implementation](#h) <br/><br/> 
                - [Third-party Vendor](#h) <br/><br/> 
                    - [Storing Symmetric Encryption Keys](#h) <br/><br/> 
                        - [``Thales``](#h) <br/><br/> 
                        - [``nCipher``](#h) <br/><br/> 
    - [Anti-Tamper](#i) <br/><br/> 
        - [Field-Programmable Gate Array](#i) <br/><br/> 
            - [``FPGA``](#i) <br/><br/> 
                - [Digital Fingerprint](#i) <br/><br/> 
            - [Physically Unclonable Function](#i) <br/><br/> 
                - [``PUF``](#i) <br/><br/> 
- [Trusted Firmware](#j) <br/><br/> 
    - [Encryption](#j) <br/><br/> 
        - [Unified Extensible Firmware Interface](#j) <br/><br/> 
            - [``UEFI``](#j) <br/><br/> 
                - [Boot Security](#j) <br/><br/> 
                    - [Secure Boot](#j) <br/><br/> 
                        - [Prevents Unwanted Processes](#j) <br/><br/> 
                    - [Measured Boot](#j) <br/><br/> 
                        - [Metrics](#j) <br/><br/> 
                            - [Attestation Report](#j) <br/><br/> 
        - [``eFUSE``](#j) <br/><br/> 
            - [Software/Firmware](#j) <br/><br/> 
                - [Alter Transister State](#j) <br/><br/> 
    - [Trusted Firmware Updates](#k) <br/><br/> 
        - [Prevent Untrusted Update Exploitation](#k) <br/><br/> 
            - [``Intel Boot Guard``](#k) <br/><br/> 
                - [Trusted Key](#k) <br/><br/> 
        - [Self-Encrypting Drives](#k) <br/><br/> 
            - [``SED``](#k) <br/><br/> 
- [Secure Processing](#l) <br/><br/> 
    - [CIA Triad](#l) <br/><br/> 
        - [Software Code/Data](#l) <br/><br/> 
            - [Executed in Volatile Memory](#l) <br/><br/> 
    - [Malware](#l) <br/><br/> 
        - [Obfuscation](#l) <br/><br/> 
            - [Identify Known V Uncommon Process Activities](#l)
<hr width=50%;>

***
## END

< [Table of Contents](#top) | [References](#references) >
<a id="a"></a>
***
### Hardware Assurance
***

> Communicate best practices for supply chain, hardware root of trust, trusted firmware, and secure processing

< [Table of Contents](#top) | [References](#references) >
<a id="b"></a>
***
###### Hardware Assurance Best Practices
***

Cover a number of hardware assurance best practices, including supply chain assessment, hardware source authenticity and trusted foundry, trusted firmware, and more.

< [Table of Contents](#top) | [References](#references) >
<a id="c"></a>
***
###### Supply Chain Assessment
***

Start with ensuring due diligence and source authenticity in outlining the different methods of supply chain assessment.

< [Table of Contents](#top) | [References](#references) >
<a id="d"></a>
***
###### Supply Chain Assessment - Vendor Due Diligence
***

``Due Diligence`` is a legal principle in that a subject has used best practice or reasonable care when setting up, configuring, and maintaining a system. 

Performing due diligence on your vendors and suppliers is crucial to securing your specific supply chain.

> Due Diligence Questionnaire Checklist

The following are some considerations for establishing a solid due diligence questionnaire checklist:


- Do they offer incident response and/or forensics services on their behalf?


- Do they have their own established cyber security risk management program in place?


- Do they regularly patch and update their product in a timely manner?


- Do they inject any type of security or development best practices into their creation process?


- What security controls do they have in place when accessing your data?


- What does their historical background check look like? Have they gone bankrupt? Have they been breached?

< [Table of Contents](#top) | [References](#references) >
<a id="e"></a>
***
###### Supply Chain Assessment - Hardware Source Authenticity and Trusted Foundry
***

> Hardware Source Authenticity 

Is the process of ensuring that hardware is procured tamper-free from trustworthy suppliers - validating the supply chain at all costs.

> Trusted Foundry

Is a microprocessor manufacturing utility that is part of a validated supply chain (one where hardware and software does not deviate from its documented functions).

> Trusted Foundry - Defense Microelectronics Activity - ``DMEA``

Ensuring that any third parties you deal with are thoroughly vetted and have a trusted supply chain is vital to your survival. 

Checking with a Trusted Foundry like ``DMEA`` (Defense Microelectronics Activity) is a great way to get a bit of background on who your supplier actually deals with. 

< [Table of Contents](#top) | [References](#references) >
<a id="f"></a>
***
###### Supply Chain Assessment - Hardware Root of Trust
***

Hardware Root of Trust is a cryptographic module embedded within a computer system that can endorse trusted execution and attest to boot settings and metrics.

< [Table of Contents](#top) | [References](#references) >
<a id="g"></a>
***
###### Supply Chain Assessment - Trusted Platform Module - ``TPM``
***

A ``TPM`` is a specification for hardware-based storage of digital certificates, keys, hashed passwords, and other user and platform identification information.

Most implementations of a ``TPM`` are included in a device's ``Chipset`` or as an embedded option of the ``CPU`` itself. 

What is so unique is that the microprocessor has an unchangeable asymmetric private key that can be used to create other types of subkeys to perform select access tasks.

< [Table of Contents](#top) | [References](#references) >
<a id="h"></a>
***
###### Supply Chain Assessment - Hardware Security Module - ``HSM``
***

An ``HSM`` is an appliance for generating and storing cryptographic keys.

This sort of solution may be less susceptible to tampering and insider threats than software-based storage.

It is important to know that ``HSM`` are usually implemented by a third-party vendor and are primarily used for storing symmetric encryption keys - examples of these third-party solutions include Thales and nCipher.

< [Table of Contents](#top) | [References](#references) >
<a id="i"></a>
***
###### Supply Chain Assessment - Anti-Tamper
***

> Field-Programmable Gate Array - ``FPGA``

Anti-tamper is simply a mechanism that makes use of the Field-Programmable Gate Array (``FPGA``) to create a ``Digital Fingerprint``.

> Field-Programmable Gate Array - ``FPGA`` - Physically Unclonable Function - ``PUF``

When combined with a Physically Unclonable Function (``PUF``) of the device, anti-tamper solutions can detect and remediate any nefarious activities that may be occurring. 

Anti-tamper methods make it difficult for an attacker to alter the authorized execution of software.

< [Table of Contents](#top) | [References](#references) >
<a id="j"></a>
***
###### Trusted Firmware 
***

> Encryption

Encryption of the firmware is extremely important as it limits an attacker's ability to gain access to one of the most sensitive and vulnerable areas on a machine. 

The following are some different types of techniques that can be used for this purpose:

> Encryption - Unified Extensible Firmware Interface - ``UEFI``

A type of system firmware providing support for 64-bit CPU operation at boot, full GUI and mouse operation at boot, and better boot security.

> Encryption - Unified Extensible Firmware Interface - ``UEFI`` - Secure Boot

A ``UEFI`` feature that prevents unwanted processes from executing during the boot operation.

> Encryption - Unified Extensible Firmware Interface - ``UEFI`` - Measured Boot

A ``UEFI`` feature that gathers secure metrics to validate the boot process in an attestation report.

> Encryption - eFUSE

A means for software or firmware to permanently alter the state of a transistor on a computer chip.

< [Table of Contents](#top) | [References](#references) >
<a id="k"></a>
***
###### Trusted Firmware - Trusted Firmware Updates
***

Using technology to prevent untrusted update exploitation like ``Intel Boot Guard`` can help in this effort. 

With trusted firmware updated, a trusted special key is used each time to validate before updating.

> Self-Encrypting Drives - ``SED``

You can also use Self-Encrypting Drives (``SED``), a disk drive where the controller can automatically encrypt data that is written to it.

< [Table of Contents](#top) | [References](#references) >
<a id="l"></a>
***
###### Secure Processing
***

Secure Processing is a mechanism for ensuring the ``CIA Triad of Software Code and Data`` as it is executed in volatile memory.

> Malware - Obfuscation - Identify Known V Uncommon Process Activities

A popular technique with malware is to try and hide its activity in a process called obfuscation. 

One way to capture and eliminate this activity is to try and identify known versus uncommon process activities.

The following are some ways to eliminate untrusted processing and further solidify your security stance.


- Use bus encryption to lock down ports, USB, or even HDMI from being used without proper authentication.


- Use a secure enclave for trusted processes.


- Ensure processor security extensions are enabled if applicable.
 

- Try atomic execution, where a process has the ability to execute only the number of times it needs, before it is then stripped of its access.

***
## END

< [Table of Contents](#top) >
<a id="references"></a>
***
## References
***

&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;cybrary, "Hardware Assurance," [cybrary.it](https://web.archive.org/web/20220724081418/https://www.cybrary.it/), n.d..

***
## END

< [Table of Contents](#top) | [References](#references) >
<a id="appendix"></a>
***
## Appendix
***

***
## END

In [1]:
from IPython.core.display import display,HTML
display(HTML("<style>.container { width:100% !important; }</style>"))

  from IPython.core.display import display,HTML


# END JUPYTER NOTEBOOK