The SMM Rootkit Revisited: Fun with USB


System Management Mode (SMM) in x86 has enabled a new class of malware with incredible power to control physical hardware that is virtually impossible to detect by the host operating system. Previous SMM root kits have only scratched the surface by modifying kernel data structures and trapping on I/O registers to implement PS/2 key loggers. In this paper… (More)
DOI: 10.1109/ARES.2014.44


6 Figures and Tables


