User: Password:
Subscribe / Log in / New account

Details on Ubuntu's UEFI secure boot plan

Details on Ubuntu's UEFI secure boot plan

Posted Jun 25, 2012 6:11 UTC (Mon) by eduperez (guest, #11232)
In reply to: Details on Ubuntu's UEFI secure boot plan by jiu
Parent article: Details on Ubuntu's UEFI secure boot plan

> I disagree with this interpretation:
> "We believe that the intention of secure boot is to protect against malicious use or modification of pre-boot code"
> My interpretation is that secure boot was devised to distract the energy of people building linux to hinder their progress.

Secure boot was created to lock users out of their own computers; period.

(Log in to post comments)

Details on Ubuntu's UEFI secure boot plan

Posted Jun 25, 2012 11:40 UTC (Mon) by slashdot (guest, #22014) [Link]

Well, the problem is all technologies who give strong assurance to the user that their computer is behaving as expected, are pretty much exactly the same ones needed to give the same assurance to a third party (also known as "digital rights management").

For example, to prevent a physical attacker replacing your motherboard with one without secure boot you'd need to require an USB smartcard that is kept by the user and authenticates the system, but that exact same mechanism can be used by a remote server to authenticate your system as one respecting DRM rights on the content it sends.

In addition, those technologies are perfect to create monopolies by allowing the vendor's software to be considered the only legitimate one.

IMHO the only effective solution is legislation to make DRM and tying hardware to software illegal (btw, this is easy: just say that anyone doing so loses all their IP rights), so that users can trust that security mechanisms will not be used against them; otherwise, I expect all legitimate security systems to fail due to strong anti-DRM pushback.

I guess it's unlikely that such a law will be passed, so we'll have to live with imperfectly secure systems for the time being.

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds