Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Special Publication 800-147B, BIOS Protection Guidelines for Servers
September 03, 2014

NIST announces the release of NIST Special Publication 800-147BBIOS Protection Guidelines for Servers. This guide is intended to mitigate threats to the integrity of fundamental system firmware, commonly known as the Basic Input/Output System (BIOS), in server-class systems. This guide identifies security requirements and guidelines for a secure BIOS update process, using digital signatures to authenticate updates. The intended audience for this document includes BIOS and platform vendors of server-class systems, and information system security professionals who are responsible for procuring, deploying, and managing servers. 
 
This document is the second in a series of publications on BIOS protections. The first document, SP800-147, BIOS Protection Guidelines, was released in April 2011 and provides guidelines for desktop and laptop systems deployed in enterprise environments.

 

Created December 21, 2016, Updated April 17, 2017