Linked by Thom Holwerda on Wed 21st Sep 2011 22:06 UTC, submitted by kragil
Windows After the walled garden coming to the desktop operating system world, we're currently witnessing another potential nail in the coffin of the relatively open world of desktop and laptop computing. Microsoft has revealed [.pptx] that as part of its Windows 8 logo program, OEMs must implement UEFI secure boot. This could potentially complicate the installation of other operating systems, like Windows 7, XP, and Linux.
Permalink for comment 490295
To read all comments associated with this story, please click here.
RE: Possibly very good
by lemur2 on Thu 22nd Sep 2011 02:07 UTC in reply to "Possibly very good"
lemur2
Member since:
2007-02-17

If this stays as an option in the bios that we can turn off, or if the linux community get their own software signed in a practical manor, then there is a very, very good side to this.


It is not a problem of the linux community, it is a problem that whoever makes the UEFI hardware won't give out signing keys to anybody and everybody. They will put only a certain number of keys in the UEFI ROMs, and the only OSes which will boot will be those signed with a matching key.

If they then give signing keys out to everybody who wanted to compile a new kernel, then root-kit authors could sign their root kits, and we are back to square one. They may as well not have the whole secure boot thing in the first place. It only makes sense if the signing keys are kept as secrets.

Edited 2011-09-22 02:09 UTC

Reply Parent Score: 4