The BIOS Chip and BIOS Recovery
The BIOS Chip and BIOS Recovery
Before 1990 or so BIOSes were held on ROM chips that could not be altered. As its complexity and need for updates grew, BIOS firmware was subsequently stored on EEPROM or flash memory devices. The first flash chips attached to the ISA bus. Starting in 1998, the BIOS flash moved to the LPC bus, a functional replacement for ISA, following a new standard implementation known as "firmware hub" (FWH). In 2006, the first systems supporting a Serial Peripheral Interface (SPI) appeared, and the BIOS flash moved again.
EEPROM chips are advantageous because they can easily be updated by the user; hardware manufacturers frequently issue BIOS updates to upgrade their products, improve compatibility and remove bugs. However, the risk is that an improperly executed or aborted BIOS update can render the computer or device unusable. To recover from BIOS corruption, some new motherboards have a backup BIOS (i.e. they are referred to as "Dual BIOS" boards, Gigabyte even offers a motherboard with quad BIOS). Also, most BIOSes have a "boot block" which is a portion of the ROM that runs first and is not updateable. This code will verify that the rest of the BIOS is intact (via checksum, hash, etc.) before transferring control to it. If the boot block detects that the main BIOS is corrupted, then it will typically initiate a recovery process, by booting to a removable device (floppy, CD or USB memory) so that the user can try flashing again.
Due to the limitation on the number of times that flash memory can be flashed, a flash-based BIOS is vulnerable to "flash-burn" viruses that repeatedly write to the flash, permanently corrupting the chip. Such attacks can be prevented by some form of write-protection, the ultimate protection being the replacement of the flash memory with a true ROM.
Before 1990 or so BIOSes were held on ROM chips that could not be altered. As its complexity and need for updates grew, BIOS firmware was subsequently stored on EEPROM or flash memory devices. The first flash chips attached to the ISA bus. Starting in 1998, the BIOS flash moved to the LPC bus, a functional replacement for ISA, following a new standard implementation known as "firmware hub" (FWH). In 2006, the first systems supporting a Serial Peripheral Interface (SPI) appeared, and the BIOS flash moved again.
EEPROM chips are advantageous because they can easily be updated by the user; hardware manufacturers frequently issue BIOS updates to upgrade their products, improve compatibility and remove bugs. However, the risk is that an improperly executed or aborted BIOS update can render the computer or device unusable. To recover from BIOS corruption, some new motherboards have a backup BIOS (i.e. they are referred to as "Dual BIOS" boards, Gigabyte even offers a motherboard with quad BIOS). Also, most BIOSes have a "boot block" which is a portion of the ROM that runs first and is not updateable. This code will verify that the rest of the BIOS is intact (via checksum, hash, etc.) before transferring control to it. If the boot block detects that the main BIOS is corrupted, then it will typically initiate a recovery process, by booting to a removable device (floppy, CD or USB memory) so that the user can try flashing again.
Due to the limitation on the number of times that flash memory can be flashed, a flash-based BIOS is vulnerable to "flash-burn" viruses that repeatedly write to the flash, permanently corrupting the chip. Such attacks can be prevented by some form of write-protection, the ultimate protection being the replacement of the flash memory with a true ROM.