Michał Żygowski

Firmware engineer and core developer of coreboot. Maintainer of Braswell SoC, PC Engines, Protectli and Libretrend platforms. Interested in advanced hardware features, security and coreboot. Open source firmware enthusiast and conference speaker.

Articles (22)

Dasharo Compatible with MSI PRO Z690-A Release v1.1.3

Published at February 13, 2024 ·  11 min read

Discover the latest Dasharo v1.1.3 release bringing new features, many bug fixes, and compatibility with 14th generation Intel Core processors. Dive in to find out more....

Categories: firmware security

Upgrading your gears with liquid cooling

Published at December 18, 2023 ·  6 min read

The post describes the story of upgrading a MSI PRO Z690-A DDR4 Full PC build with Dasharo firmware from 3mdeb to a 14th Gen Intel CPU and a liquid cooling....

Categories: firmware miscellaneous

TrenchBoot Anti Evil Maid - Phase 2

Published at October 20, 2023 ·  10 min read

TrenchBoot Anti Evil Maid project for Qubes OS is progressing. With the addition of TPM 2.0 support, Anti Evil Maid gains much higher adoption and possibilities than ever before....

Categories: bootloader firmware hypervisor os-dev security

Dasharo compatible with MSI PRO Z690-A release v1.1.1

Published at March 2, 2023 ·  11 min read

A short overview of changes introduced in v1.1.1 release of Dasharo compatible with MSI PRO Z690-A with a short demo of Qubes OS R4.1.2-rc1....

Categories: firmware

TrenchBoot Anti Evil Maid for Qubes OS

Published at January 31, 2023 ·  14 min read

Qubes OS Anti Evil Maid (AEM) software heavily depends on the availability of the DRTM technologies to prevent the Evil Maid attacks. However, the project has not evolved much since the beginning of 2018 and froze on the support of TPM 1.2 with Intel TXT in legacy boot mode (BIOS). In the post we show how existing solution can be replaced with TrenchBoot and how one can install it on the Qubes OS. Also the post will also briefly explain how TrenchBoot opens the door for future TPM 2.0 and UEFI support for AEM....

Categories: bootloader firmware hypervisor os-dev security

Open Source Firmware on TigerLake platforms - part 1

Published at April 14, 2022 ·  9 min read

This post describes efforts of building open source firmware for Tiger Lake UP3 RVP platform and the problems faced in the process. Tiger Lake is one of the newest Intel processors for which the FSP and EDK2 MinPlatform has been recently released....

Categories: firmware

ASUS KGPE-D16 Dasharo testing update

Published at March 23, 2022 ·  3 min read

This blog post describes the updates in the validation process of Dasharo for ASUS KGPE-D16. You will read about new tests and newly detected issues....

Categories: firmware

A new source of trust for your platform - Dasharo with Intel TXT support

Published at March 17, 2022 ·  9 min read

Do you trust the firmware on your system? No? Then this post is a must-read for you. Get to know what Intel Trusted Execution Technology (TXT) is and how it may help you securely measure and attest your operating system and software running on your machine. You will also hear about open-source implementation of Intel TXT for Ivy Bridge/Sandy Bridge platforms including Dell OptiPlex 7010 / 9010....

Categories: firmware security

KGPE-D16 open-source firmware status

Published at February 3, 2022 ·  6 min read

This post covers the struggles and efforts behind the revival of KGPE-D16. Something that community was waiting for a long time. With Dasharo firmware the platform obtained a new life and sees a new daylight with more security features and improvements....

Categories: firmware security

Dasharo for Dell OptiPlex 7010 / 9010

Published at November 26, 2021 ·  8 min read

Open source firmware may be hundreds of times better than the proprietary one. On the example of Dell OptiPlex 7010 / 9010 we will show you the advantages of Dasharo firmware on this machine....

Categories: firmware