Language Selection

English French German Italian Portuguese Spanish

UEFI secure booting (part 2)

Filed under
Microsoft

Microsoft have responded to suggestions that Windows 8 may make it difficult to boot alternative operating systems. What's interesting is that at no point do they contradict anything I've said. As things stand, Windows 8 certified systems will make it either more difficult or impossible to install alternative operating systems. But let's have some more background.

We became aware of this issue in early August. Since then, we at Red Hat have been discussing the problem with other Linux vendors, hardware vendors and BIOS vendors. We've been making sure that we understood the ramifications of the policy in order to avoid saying anything that wasn't backed up by facts. These are the facts:

* Windows 8 certification requires that hardware ship with UEFI secure boot enabled.

* Windows 8 certification does not require that the user be able to disable UEFI secure boot, and we've already been informed by hardware vendors that some hardware will not have this option.

* Windows 8 certification does not require that the system ship with any keys other than Microsoft's.

* A system that ships with UEFI secure boot enabled and only includes Microsoft's signing keys will only securely boot Microsoft operating systems.

More here




Also:

An obvious question is why Linux doesn't support UEFI secure booting. Let's ignore the issues of key distribution and the GPL and all of those things, and instead just focus on what would be required. There's two components - the signed binary and the authenticated variables.

Rest of that here

More in Tux Machines

Ubuntu Core has the keys to IoT security

In October, a DDoS attack on Dyn's infrastructure took down a big chunk of the internet, making sites like Amazon and Twitter inaccessible. It was the first major attack involving IoT (internet of things) devices. Fortunately, it was also a benign attack: no one got hurt, no one died. However, the next attack could be catastrophic. No one knows when it will happen. No one knows the magnitude. Read more

Android Marshmallow on PC Falls Flat

The Android-x86 Project eventually may become a viable operating system alternative for your desktop and laptops computers, but it's not there yet. You will have to wait a while for the developers to fix a number of failures with the latest release upgrading Android-x86 to Marshmallow 6.0.1. The developers late this summer released the first stable version of Android-x86 6.0, codenamed "Marshmallow." Android-x86 lets you run the Android OS with the Google Chrome browser on your desktop and laptop computers, rather than buying one of the qualified Chromebooks with the Google Play Store features bolted on. Read more

Korora 25 Linux Released, Based on Fedora 25 Ships with Cinnamon 3.2, MATE 1.16

On December 7, 2016, the development team behind the Fedora-based Korora Linux operating system proudly announced the release and general availability of Korora 25. Read more

SparkyLinux 4.5.1 MinimalGUI ISO Respin Improves the Sparky Advanced Installer

Only four days after the official release of the Debian-based SparkyLinux 4.5 operating system, the development team published an update MinimalGUI ISO image dubbed SparkyLinux 4.5.1. Read more