UEFI secure booting (part 2)

Posted by jezuch on Sep 24, 2011 12:21 PM EDT
mjg59's journal; By Matthew Garrett
Mail this story
Print this story

Why is this a problem? Because there's no central certification authority for UEFI signing keys. Microsoft can require that hardware vendors include their keys. Their competition can't. A system that ships with Microsoft's signing keys and no others will be unable to perform secure boot of any operating system other than Microsoft's. No other vendor has the same position of power over the hardware vendors. Red Hat is unable to ensure that every OEM carries their signing key. Nor is Canonical. Nor is Nvidia, or AMD or any other PC component manufacturer. Microsoft's influence here is greater than even Intel's.

Full Story

» Read more about: Story Type: Editorial; Groups: Linux, Microsoft

« Return to the newswire homepage

Subject Topic Starter Replies Views Last Post
CAs? bwahahaha tuxchick 0 667 Sep 24, 2011 8:06 PM
Red Hat strategy montezuma 0 697 Sep 24, 2011 4:40 PM

You cannot post until you login.