WingNews logo WingNews
top | item 46791193

(no title)

ahepp | 1 month ago

Doing secure boot properly is kind of difficult. There are a bunch of TPM measurement registers for various bits and bobs (kernel, initramfs, cmdline, lots more). Using UKIs simplifies it a lot, but it’s not trivial to do right at the moment.

discuss

order

Nextgrid|1 month ago

Secure Boot and TPM are separate things. The current Secure Boot policy gets measured by the TPM but that's about it.