LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Dividing the Linux desktop

LWN.net Weekly Edition for June 13, 2013

A report from pgCon 2013

Little things that matter in language design

LWN.net Weekly Edition for June 6, 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

An update on UEFI secure boot

An update on UEFI secure boot

Posted Nov 6, 2011 22:40 UTC (Sun) by foom (subscriber, #14868)
In reply to: An update on UEFI secure boot by njs
Parent article: An update on UEFI secure boot

I was thinking it was so that a "reinstall windows" button could reliably reinstall windows from the HD, without the possibility of any rootkits getting in the way.

(Log in to post comments)

An update on UEFI secure boot

Posted Nov 6, 2011 22:48 UTC (Sun) by njs (guest, #40338) [Link]

Good idea. I haven't seen that in any MS literature, but I haven't looked at much either. Though, "reliably" is probably the wrong word -- you could prevent a rootkit from infecting the backup partition, but it could easily trash the backup partition so that you still had to use a traditional reinstall method.

An update on UEFI secure boot

Posted Nov 7, 2011 0:23 UTC (Mon) by mjg59 (subscriber, #23239) [Link]

That's something it allows, yes. But it also allows you to assume that nothing has modified system state before you start the kernel, which means that if the first piece of userspace you start is a virus checker you know that the answers it gets from the kernel can be trusted.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds