3.4 – Motherboards: BIOS Settings

Questions and Answers

What is a primary function of a Hardware Security Module (HSM)?

To increase server storage capacity

To manage user interfaces

To serve as a standard computing device

To provide cryptographic functions (correct)

Which statement accurately describes a feature of a purpose-built HSM?

It cannot be used as a key backup for servers.

It can increase application throughput through cryptographic accelerators. (correct)

It requires direct access to keys for management purposes.

It can only store one cryptographic key at a time.

How can lightweight HSMs, such as smart cards or USB drives, be utilized?

For backing up large server arrays.

For providing shared key access to numerous users.

For storing personal keys that can be transported. (correct)

For offloading server workload entirely.

In terms of key management, what is a key characteristic of an HSM?

Keys are stored securely with restricted access.

What is a benefit of offloading cryptographic functions to an HSM?

It increases the performance and throughput of applications.

Which key is commonly used to access the BIOS setup during startup?

Delete key

What issue might you encounter when starting Windows 8, Windows 10, or Windows 11?

No option to press a key to access BIOS.

What is the default behavior of Windows when you power down your system with fast startup enabled?

The system enters a hibernated state.

Which virtualization software does NOT provide access to BIOS settings?

VirtualBox

How can you bypass the fast startup to access BIOS settings?

Press the Shift key while clicking restart.

What happens if you interrupt the normal boot process three times?

Windows will disable fast startup.

What is one method to access BIOS settings if you cannot use any desktop options?

Interrupt the normal boot process.

What could be a potential consequence of making changes to the BIOS?

Boot failures or system not starting.

What should you do before making any changes to the BIOS?

Make a backup of all BIOS settings.

What can happen if you make incorrect changes to the BIOS?

It could cause the system to have problems.

Which of these options could you configure in BIOS to control booting?

Enable or disable USB boot options.

How can you enhance computer security using BIOS settings?

By disabling unnecessary hardware interfaces.

Which feature helps protect the BIOS from malware?

Secure Boot.

What is the function of the integrated fan controller in BIOS?

To regulate airflow based on temperature.

What might the BIOS configuration allow you to do with USB interfaces?

Enable or disable USB access.

What is required for an operating system to use secure boot?

A digital signature associated with the operating system

What is critical to note when making changes in BIOS?

Understanding what each change will do is essential.

How does BIOS protect changes to important information?

By having built-in fail safes

How does changing the boot sequence in BIOS affect the system?

It determines the order of devices from which the system will try to boot.

What procedure might you follow to reset the BIOS configuration?

Short specific jumper pins on the motherboard

Why did the Department of Defense disable USB interfaces on their systems?

To protect sensitive information from threats.

What is an effect of a malfunctioning BIOS after making incorrect changes?

It may prevent the system from booting altogether.

What is the primary purpose of the Trusted Platform Module (TPM)?

Provide cryptographic functions

What is a potential risk of allowing USB hardware access in a secure environment?

It could facilitate data exfiltration.

What will happen if you forget your BIOS password?

You will need to reset the BIOS to regain access

What is stored in the flash memory connected to the motherboard?

BIOS configurations

How can BIOS help manage system cooling?

By regulating fan speed based on temperature.

What option should you consider if problems arise after BIOS modifications?

Restore the original BIOS settings.

What is the role of the battery labeled CR 2032 on the motherboard?

To maintain date and time configuration

Which of the following could restrict changes to BIOS settings?

A supervisor password

What does the term CMOS refer to in modern systems?

Complementary Metal Oxide Semiconductor

Which component helps in maintaining system security against unauthorized access?

Trusted Platform Module (TPM)

What happens to the BIOS configuration if the CR 2032 battery fails?

Only the date and time resets

Why is the public key important in the secure boot process?

To verify digital signatures

What does enabling secure boot do in the BIOS?

Allows only signed operating systems to boot

How can one access BIOS settings on most systems?

By pressing a specific key during startup

Study Notes

BIOS Access and Configuration

• BIOS initialization occurs during computer startup
• Access BIOS setup using a key (Delete, function key, or key combination) during startup.
• Hyper-V and VMware Workstation allow BIOS access within virtualization software.
• VirtualBox does not offer BIOS access; consider UEFI BIOS simulators.
• Windows 8, 10, and 11 might not offer a key-press BIOS entry option due to fast startup.
• Fast startup places the system in a hibernated state, not a complete shutdown.
• To bypass fast startup, hold Shift while clicking restart or disable from Settings.
• MSConfig offers an alternative system restart option.
• Interrupt boot process three times to bypass fast startup.

BIOS Configuration Settings

• BIOS configuration changes can lead to boot failures.
• Back up BIOS settings before making changes, using images or taking notes.
• BIOS contains numerous settings impacting hardware functionality.
• Selecting boot sequence (order) of devices (e.g., USB, SSD, hard drive).
• BIOS can disable or enable hardware components, e.g., USB ports.
• USB port disabling is important for security, to prevent unauthorized data transfer.
• The US DoD disabled USB ports due to the SillyFDC worm attack (2008).
• BIOS configuration controls computer hardware and software interaction.

BIOS Fan and Cooling Control

• BIOS can manage system fans (CPU, chassis fans), impacting performance and noise levels.
• Motherboards have integrated fan controllers adjusting airflow based on system temperatures.
• Connect fans directly to motherboard connections.
• Adjust performance-to-quietness balance using power options under intelligent cooling.

BIOS Security and Boot Process

• Secure boot (UEFI specification) verifies the boot process using digital signatures.
• Secure boot protects against malware modifications during system start-up.
• Supports various operating systems (Windows, Linux).
• Require OS digital signatures (public keys) for secure boot.
• BIOS includes fail-safes to prevent unauthorized changes to system settings.

BIOS Access Restriction

• Implement user passwords to restrict BIOS access.
• Supervisor passwords restrict BIOS configuration changes.
• BIOS passwords are separate from operating system passwords, stored in flash memory.
• Resetting BIOS configurations involves clearing CMOS data, commonly through shorting pins.

BIOS and Motherboard Components

• Modern BIOS configurations are stored in motherboard flash memory.
• Removing and reinserting motherboard-battery does not affect BIOS configuration anymore, only the time and date settings.
• Modern systems use flash memory for BIOS configurations, not CMOS.
• Older systems used CMOS.

TPM (Trusted Platform Module)

• TPM cryptographic functionality useful for full-disk encryption.
• TPM stores persistent cryptographic keys.
• Use TPM to digitally sign data and verify its origin.
• Modifying TPM configurations within the BIOS.
• Some organizations use Hardware Security Modules (HSM).

HSM (Hardware Security Module)

• Standalone devices or adapter cards for secure cryptographic key management.
• HSMs provide secure key backups.
• HSMs have hardware-based cryptographic accelerators.
• Lightweight HSMs, like smart cards, are used for personal keys.

Description

This quiz covers essential concepts related to accessing and configuring the BIOS during computer startup. It discusses key sequences for BIOS access, the impact of fast startup, and the importance of BIOS settings for hardware functionality. Perfect for those looking to deepen their understanding of computer systems.