Hackers' Pub

Syntax	Description	Examples
`"` keyword `"`	Finds the string within quotes, including spaces. Case-insensitive. (Escape quotes inside with `\"`)	`"Hackers' Pub"`
`from:` handle	Finds content written by the specified user.	`from:hongminhee` `from:hongminhee@hollo.social`
`lang:` ISO 639-1	Finds content written in the specified language.	`lang:en`
`#` tag	Finds content with the specified tag. Case-insensitive.	`#HackersPub`
condition condition	Finds content that satisfies both conditions on either side of the space (logical AND).	`"Hackers' Pub" lang:en`
condition `OR` condition	Finds content that satisfies at least one of the conditions on either side of the OR operator (logical OR).	`#HackersPub OR "Hackers' Pub" lang:en`
`(` condition `)`	Combines the operators within the parentheses first.	`(#HackersPub OR "Hackers' Pub" OR "Hackers Pub") lang:en`

Schrödinger's Catgirl (Joyce) @sleepyowl@chaos.social

2/24/2026, 2:22:11 PM

Public

How do these security processors verify the firmware integrity?

Through a set of cryptographic keys and their hashes, which are used to verify the cryptographic signature of the UEFI firmware. These keys or hashes are *burned* into the processor and cannot be changed. /3

Slide: Early PSP Boot Procedure

On-Chip Bootloader:
1. Load PSP_DIRECTORY
2. Load AMD_PUBLIC_KEY
3. Verify AMD_PUBLIC_KEY
4. Load PSP_FW_BOOT_LOADER
5. Verify with AMD_PUBLIC_KEY

Off Chip Bootloaer:
1. Initialize PSP
2. Load more directories
3. Load and verify applications

Slide: BOOT PROCESS: RYZEN

* PSP boots before the x86 cores
* On-Chip Bootloader loads Off-Chip bootloader from flash
* Off-Chip Bootloader loads and executes apps in specific order
* System is initialized by different ABL stages
* Load UEFI image and release x86 cores from reset

Schrödinger's Catgirl (Joyce) @sleepyowl@chaos.social

2/24/2026, 2:25:25 PM

Public

For now, these functions are not strictly enforced or turned on in a lot of consumer devices.

But is there anything stopping nation states from forcing hardware manufacturers and OEMs to do so?

What options do you have in such a case? /4

Manufacturer response to IOActive's disclosures regarding AMD PSP implemenation flaws:

Acer:
“We appreciated your information about a possible vulnerability in Acer product. After thoroughly investigation, AMD PSB is an Optional Design during develop on
consumption product, it's not a mandatory requirement in Swift 3 SF314-42;

even though AMD PSB status is not enabled by default, platform with Secure Boot and Secure Flash are in position to protect system if malicious code injecting to flashROM, so we don’t consider this as a vulnerability.”

Lenovo:
“Platform Secure Boot was introduced as a standard feature on all consumer Lenovo laptops in 2022, and laptops manufactured prior to this date were not designed with this feature in mind. Enabling it on devices now in the field would be likely to frustrate consumers if any unexpected issues arise.”

Huawei:
“The PSB function was not enabled on our early AMD platform product, the PSB-like function(also known as “Intel Boot Guard”) was enabled on our later Intel platform product (such as MateBook 16s 2022).

We confirmed with the BIOS supplier (Wingtech Technology) of the AMD platform
product, there is no modification plan for this issue. To avoid confusing users, we
kindly ask you not to disclose this issue. [...]"

If you have a fediverse account, you can quote this note from your own instance. Search https://chaos.social/users/sleepyowl/statuses/116126064668115051 on your instance and quote it. (Note that quoting is not supported in Mastodon.)