Not logged in
Log in now
Create an account
Subscribe to LWN
LWN.net Weekly Edition for December 5, 2013
Deadline scheduling: coming soon?
LWN.net Weekly Edition for November 27, 2013
ACPI for ARM?
LWN.net Weekly Edition for November 21, 2013
What makes you think the planned Fedora approach compromises the designed security?
'You have to divulge your private key' meme
Posted Jul 4, 2012 2:21 UTC (Wed) by Richard_J_Neill (subscriber, #23093)
Who gets to decide? I.e. if I were to "accidentally" leak my own private key, which authority has the right to revoke my signed binaries across other computers?
Key revocation normally works because the key owner decides to revoke it.
Otherwise, all sorts of problems could arise (for example, some nasty malware could try to revoke the MS key).
> What makes you think the planned Fedora approach compromises the designed
Well, I see how Fedora can try to make use of signed boot as a rather trivial featurelet - but I thought that in most cases, the Linux community would like secure boot to just go away, and therefore most of the effort is going into following the letter but not the spirit of the process.
Posted Jul 4, 2012 3:34 UTC (Wed) by mjg59 (subscriber, #23239)
Anyone with a key in KEK, so typically Microsoft and the system vendor.
> most of the effort is going into following the letter but not the spirit of the process.
That's not what we're doing in Fedora. If we're going to implement this then we might as well make it useful.
Posted Jul 4, 2012 17:05 UTC (Wed) by Richard_J_Neill (subscriber, #23093)
> Anyone with a key in KEK, so typically Microsoft and the system vendor.
Wouldn't that be monumentally anticompetitive? If (say) Ubuntu were to get a large installed base, and then somehow their private key became compromised, then for MS to revoke the key would prevent the existing (non-updated) Ubuntu installations from booting. If Ubuntu made it clear that they didn't want the revocation to occur (i.e. that they would prefer 10 million systems to keep booting, even without the negligible protection conferred by the key), isn't that grounds for a monumental lawsuit?
Posted Jul 4, 2012 17:43 UTC (Wed) by mjg59 (subscriber, #23239)
Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds