HomeNews & FeaturesPress Room

Press Room

Please submit media requests via our online form and include specific questions and deadlines.

The NSA/CSS Public and Media Affairs Office fosters relationships with media outlets throughout the world responding to requests for information about NSA/CSS and its missions interviews with leadership or experts and filming opportunities.

NSA Releases Cybersecurity Technical Report on UEFI Secure Boot Customization

Release No: PA-001-20 Sept. 15, 2020 PRINT | E-MAIL
WASHINGTON —

The National Security Agency has released a UEFI Secure Boot Customization Cybersecurity Technical Report that provides detailed recommendations for customizing Secure Boot to better protect against firmware exploitation – a means attackers can use to gain persistent access to victim networks. 

Secure Boot customization enables administrators to realize the benefits of boot malware defenses, insider threat mitigations, and data-at-rest protections. This product encourages National Security System (NSS), Department of Defense (DoD), and Defense Industrial Base (DIB) system administrators to customize Secure Boot instead of disabling it for compatibility issues.  

This product follows NSA’s 30 July advisory release on the GRUB BootHole vulnerability and is published as part of NSA’s mission to help secure NSS, DoD, and DIB systems.  

The full product can be viewed here

NSA

Phone: 443-634-0721
mediarelations@nsa.gov