AcademicPapers¶

Forensics acquisition - Analysis and circumvention of samsung secure boot enforced common criteria mode¶

Name: Forensics acquisition - Analysis and circumvention of samsung secure boot enforced common criteria mode
Link: https://www.sciencedirect.com/science/article/pii/S1742287618300409
License: CC BY-NC-ND

Description:¶

While this paper directly applies to the Galaxy S6 (SM-G920F) and the Galaxy S7 Edge (SM-G935F) witch uses Exynos System On a Chip, some of its findings seem to be directly applicable to the devices supported by Replicant.

The most interesting part is the analysis of some of the bootloader environment variables:

It analyzes some variables that accessible through the UART. We already have documentation explained how to access such variables but many variables aren't documented in the Replicant documentation.
It also analyzed some variables present in the adv-env.img file inside the PARAM tarball filesystem. That information has already been used in the #2094 bug.