Reply to post: Re: UEFI blows chunks

Secure Boot booted from Debian 9 'Stretch'

LDS Silver badge

Re: UEFI blows chunks

It's not "digitally signed by Microsoft", but you need to obtain the needed keys, or have them in the UEFI databases. See https://www.linuxfoundation.org/sites/lfcorp/files/lf_uefi_secure_boot_open_platforms.pdf and http://www.uefi.org/sites/default/files/resources/1_-_UEFI_Summit_Deploying_Secure_Boot_July_2012_0.pdf

Microsoft is strongly pushing to have its keys installed on every machine, and to have SecureBoot active by default, and on some systems, without the option of being disabled. But if you look at the Linux Foundation paper, you will surprisingly find they not object with this, as long as it is a customer choice (and it's not really different from what Apple does to secure its devices...)

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021