Secure Boot Isn't
by frankbell from LinuxQuestions.org on (#6PHA3)
Bruce Schneier reports that secure boot has been compromised. Here's a bit from the article he cites:
Quote:
Quote:
| On Thursday, researchers from security firm Binarly revealed that Secure Boot is completely compromised on more than 200 device models sold by Acer, Dell, Gigabyte, Intel, and Supermicro. The cause: a cryptographic key underpinning Secure Boot on those models that was compromised in 2022. In a public GitHub repository committed in December of that year, someone working for multiple US-based device manufacturers published what's known as a platform key, the cryptographic key that forms the root-of-trust anchor between the hardware device and the firmware that runs on it. |