Linked by Thom Holwerda on Thu 31st May 2012 11:11 UTC
Fedora Core "Fedora 18 will be released at around the same time as Windows 8, and as previously discussed all Windows 8 hardware will be shipping with secure boot enabled by default. [...] We've been working on a plan for dealing with this. It's not ideal, but of all the approaches we've examined we feel that this one offers the best balance between letting users install Fedora while still permitting user freedom." Wait for it... "Our first stage bootloader will be signed with a Microsoft key."
Permalink for comment 520164
To read all comments associated with this story, please click here.
RE[2]: Wonderful...
by Alfman on Thu 31st May 2012 16:16 UTC in reply to "RE: Wonderful..."
Alfman
Member since:
2011-01-28

vaette,

"For the sake of novice users however it is useful both that the boot is protected from malware and that Fedora can install without a lot of manual configuration."

Except now running independent secure boot operating systems is a privilege, with microsoft being the gatekeeper.


"Plus, of course, Fedora having secure booting is a good security measure in itself."

Nobody's arguing this, but the reason "secure boot" is controversial is that microsoft was uniquely positioned to overload the design of secure boot to make it difficult/impossible for independent developers to implement. The rest of us generally don't have the means to get our keys in firmware. Once many of these start to ship, it'll be too late. Independent OS developers won't have any way to make their offerings secure boot compliant on existing hardware. We'll all be literally at the mercy of microsoft to sign our stuff.

A serious problem inherent with the design is that microsoft's key is now going to be on virtually all UEFI hardware, probably even on motherboards people will buy to run linux. This makes microsoft uniquely capable of installing bootloader trojan malware on all our systems at any point in the future. I'm not alleging that MS would knowingly let it happen, but it is not a good security model to have a UEFI standard where one entity controls the rights on all our hardware. God forbid China, US spy agencies, or even maligned hacking groups should get ahold of microsoft's secure boot key.

A properly designed secure boot would be future-proof and allow the owner to approve & reject what operating systems his hardware is allowed to boot *without having to disable secure boot*. Independent developers should not be relegated to 2nd class citizens on consumer hardware.

Edited 2012-05-31 16:31 UTC

Reply Parent Score: 4