com Identificações: secure-boot X
KentYoder Identificações: trusted-boot tpm trusted-computing trust secure-boot uefi-secure-boot 1 Comentário 6.282 Visitas
UEFI secure boot is getting a lot of attention lately, particularly in terms of how to install new keys, who owns those keys, and where the chain of trust should end. SuSE has some excellent blog posts outlining how it works and Matthew Garrett also has many...
KentYoder Identificações: trust uefi-secure-boot secure-boot trusted-computing trusted-boot tpm 3.183 Visitas
Last time I went through a comparison of UEFI Secure Boot and the root of trust you can construct using a TPM. There are various trade-offs in using UEFI Secure Boot versus a TPM-based trusted boot, one of which was this: "If a signature verify fails...