Ubuntu details its UEFI secure boot plans
Posted Jun 29, 2012 16:07 UTC (Fri) by giraffedata
In reply to: Ubuntu details its UEFI secure boot plans
Parent article: Ubuntu details its UEFI secure boot plans
The system can ask (1) itself, and (2) the boot binary, whether that binary has permission to boot, and it seems like both those things should be gullible. What am I missing?
I think you're wrong about asking itself being gullible. Microsoft's public key is in ROM on the machine, and since there's no way for a worm to change ROM, I think it's entirely nongullible for the machine to ask itself whether the thing it's loading is approved by Microsoft.
to post comments)