• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Looking for laptop with non-flashable ROM

K

kommisar

Member
Hi-

For security reasons I would like to purchase a laptop with a non-flashable ROM. Does anyone know of any model which features such a ROM?
 
You probably won't find one with no flash ability. What you might find though is one with a BIOS option for BIOS flash protect and the ability to set a BIOS password - the net result being that you can't flash without the BIOS password.
 
Yeah, a bios password is likely what you're looking for, but even that's not guaranteed.

However, quite a few manufacturers (such as Dell) use code signing to only ensure bios signed by them can be installed. The new protection measures of Windows 8 even go a step further. Also, if the laptop is going out of your control, you could always just reflash the bios when you get it back.
 
Funny hoiw different folks read things differently. Flashable ROM is the BIOS ROM. sometimes it is good that such flashing not be exercised. Many laptops have been rendered useless by forgotten or abandoned BIOS passwords . I interpret OP's request just the opposite - is there a laptop which cannot be BIOS password flashed. Ican see where this would be a good thing in a work place so that unhappy workers can't screw up a laptop if fired or laid off.

Off hand, I don't know of any. In that vein, if I were in charge of laptops in a workplace, I would put in the BIOS password for ALL laptops and keep that key hidden from all employees. 🙂
 
Last edited:
corkyg said:
Funny hoiw different folks read things differently. Flashable ROM is the BIOS ROM. sometimes it is good that such flashing not be exercised. Many laptops have been rendered useless by forgotten or abandoned BIOS passwords . I interpret OP's request just the opposite - is there a laptop which cannot be BIOS password flashed. Ican see where this would be a good thing in a work place so that unhappy workers can't screw up a laptop if fired or laid off.

Off hand, I don't know of any. In that vein, if I were in charge of laptops in a workplace, I would put in the BIOS password for ALL laptops and keep that key hidden from all employees. 🙂
Click to expand...

Not like BIOS passwords themselves are good security measure too, it's's totally trivial to defeat it by ripping out the HDD/SDD to access the files inside, unless the whole laptop has a fully soldered on SSD.
 
StrangerGuy said:
Not like BIOS passwords themselves are good security measure too, it's's totally trivial to defeat it by ripping out the HDD/SDD to access the files inside, unless the whole laptop has a fully soldered on SSD.
Click to expand...

That may access the files, but the laptop is still useless. The BIOS P/W has nothing to do with the storage drives. It is stored on a Eprom linked to the BIOS chip. Laptops are designed to thwart thieves at airports, etc. Many of the OEMS require it to be returned to the factory to be cleared.

Other security measures include the ability of a security team to make spot checks on laptops after hours to determine whether or not classified material is improperly stored. A BIOS P/W can prevent this without doing what you say. And another security consideration is to prevent disgruntled employees from rendering company laptops inoperable for extended periods of time. I'm sure there are others as well.
 
Last edited:
corkyg said:
Funny hoiw different folks read things differently. Flashable ROM is the BIOS ROM. sometimes it is good that such flashing not be exercised. Many laptops have been rendered useless by forgotten or abandoned BIOS passwords . I interpret OP's request just the opposite - is there a laptop which cannot be BIOS password flashed. Ican see where this would be a good thing in a work place so that unhappy workers can't screw up a laptop if fired or laid off.

Off hand, I don't know of any. In that vein, if I were in charge of laptops in a workplace, I would put in the BIOS password for ALL laptops and keep that key hidden from all employees. 🙂
Click to expand...

I am concerned with a bios that can be potentially altered by malware running on an untrusted O/S. This could defeat having a trusted OS on a thumb drive or DVD.
 
Last edited:
You must log in or register to reply here.

TRENDING THREADS

Back
Top