HP Sure Start for AMD Technical whitepaper
July 2019
L75214-001
HP Sure Start for AMD
© Copyright 2019 HP Development Company, L.P.
5 Appendix A–NIST SP 800-193: Platform Firmware Resiliency Guidelines 19
Logging and
notification
Exceeds all
Resiliency
Requirements
HP Sure Start for AMD will notify user of corruption and log the event.
HP Sure Start for AMD’s detection mechanism is capable of logging events when
corruption is detected.
HP Sure Start for AMD will notify user of a recovery event and log the event.
HP Sure Start for AMD’s detection mechanism is capable of logging events when a
recovery action has taken place.
Rollback prevention
Exceeds all
Resiliency
Requirements
HP Sure Start for AMD’s and the UEFI boot block both have controls in place to
protect against recovery to an earlier firmware version with security weaknesses.
Physical attack
detection
Additional
Functionality not
required in
NISTSP800-193
HP Sure Start for AMD’s provides protection against physical attacks to the
protected backup copy of dynamic critical data. AES encryption is used on a per-
component unique key to provide confidentiality of private data. In addition,
HMAC integrity measurements provide tamper prevention/detection of those
keys.
Sign up for updates: hp.com/go/getupdated
© Copyright 2018, 2019 HP Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and
services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional
warranty. HP shall not be liable for technical or editorial errors or omissions contained herein.
AMD is a trademark of Advanced Micro Devices, Inc. Microsoft and Windows are either registered trademarks or trademarks of Microsoft Corporation
in the United States and/or other countries. L75214-001, July 2019