User: Password:
|
|
Subscribe / Log in / New account

Signing ELF binaries

Signing ELF binaries

Posted Jan 18, 2013 6:31 UTC (Fri) by raven667 (subscriber, #5198)
In reply to: Signing ELF binaries by jimparis
Parent article: Signing ELF binaries

> If Linux can boot an unsigned Windows, Microsoft would view that as a breach of their security chain

I'm not sure that really works out in practice because there are all sorts of ways to get an OS up and running in an "insecure" manner, running in a VM or other contrived environment for example. This isn't about protecting against compromise in any arbitrary case, it's about a very specific case of booting the primary OS on bare metal. You could certainly "secure boot" a small core system, windows or linux or whatever, and use that to make a contrived environment for booting your arbitrarily compromised OS (linux or windows or whatever) and I think this case is out side the scope and threat model that Secure Boot is intended to address.

You can't win them all 8-)


(Log in to post comments)


Copyright © 2018, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds