BIOS/UEFI Flashcards
OBJ 3.4: Given a scenario, install and configure motherboards, central processing units (CPUs), and add-on cards (29 cards)
▪ Program that a CPU uses to start the computer system
▪ serves as a method of configuring the motherboard using a text-based interface
-Program a computer’s microprocessor uses to start and boot after being turned on
-example of firmware
Basic Input/Output System (BIOS)
Software on a chip and contains BIOS program code in the flash memory of a motherboard
Firmware
Supports 64-bit processors and provides a GUI
Unified Extensible Firmware Interface (UEFI)
▪ Type of chip embedded in the motherboard and can be upgraded
through flashing
Read-Only Memory (ROM)
uses an internal lithium-ion battery that can last up to 10 years
CMOS
Diagnostic testing sequence to check the computer’s basic input/output system
Power-On Self-Test (POST)
used to tell what is wrong with the system
ex: ▪ Keyboard is not detected
● Two short beeps and one long beep
Variable beeps
How to enter the BIOS configuration
environment
F2, DEL, ESC, F1, F10, F12
Updated form of BIOS that allows keyboard and mouse as input and
provides a GUI
● Supports 64-bit systems
● Supports larger HDDs and SSDs (9.4 zettabytes ~ 9.4 x 10^21
bytes)
● Supports the new GUID Partition Table (GPT) format
● Faster boot-up system
● Uses a larger ROM size
Unified Extensible Firmware Interface (UEFI)
It is best practice to disable booting from an optical drive or USB drive
▪ Configure the system to boot from the _____
installed hard drive using the installed OS
Boot the OS using _____ as the primary option
PXE
Performed during upgrades, security fixes, or feature improvements
● Back up the configuration and information
● Use a USB flash drive to flash the firmware
● The BIOS or UEFI will copy the firmware to the system and
overwrite the old code
Flashing
Computers that rely on BIOS use ____ to hold the boot information
MBR
Computers that rely on UEFI use ____ to hold the boot information
GPT
Used to protect access to the BIOS or UEFI configuration program and prevents access from unauthorized users
Supervisor/Administrator/Setup Password
Used to lock access to the computer
User/System Password
Password that locks access to a hard drive connected to the system and requires the end user’s password
Storage/Hard Drive Password
Enabled in the UEFI interface and settings and is not supported by BIOS
Secure Boot
type of malicious software that:
Enables unauthorized access to a computer or software.
Allows cybercriminals to remotely control your operating system without detection.
Can deliver additional malware, such as ransomware, bots, keyloggers, or trojans
Rootkit
Modern systems are configured to enable or disable the USB ports on this
motherboard
Disable the ability of USB to read and write from __________
▪ Set passwords
▪ Enable secure boot
▪ Restrict or disable USB ports
mass storage devices
the foundation of all secure operations of a computing system
-Cryptographic module embedded in a computer system that endorses trusted execution and attests to boot settings and metrics
-used to scan the boot metrics in the OS files to
verify signatures and then use them to sign the report
Hardware Root of Trust (RoT)
Specification for hardware-based storage of digital certificates, keys,
hashed passwords, and other user and platform identification
information
- is a hardware RoT
● Secured boot-up
● Provides encryption
- can be managed in Windows via tpm.msc console
or through group policy
Trusted Platform Module (TPM)
Appliance for generating and storing cryptographic keys that
is less susceptible to tampering and insider threats
Hardware Security Module (HSM
