Mathew Garrett On The State Of Boot Security

Written by Michael Larabel in Hardware on 1 January 2016 at 07:41 AM EST. 10 Comments
HARDWARE
Matthew Garrett presented this week at the Chaos Computer Club's 32C3 conference about the state of boot security.

Garrett, a well known Linux kernel developer that has been working on (U)EFI Linux support for years, presented on the boot security not just for Linux but also Windows and OS X. In regards to the UEFI Secure Boot state from Matthew's perspective, Windows support is there in "a meaningful way" and it's "good, but not perfect." On the Apple side, there is currently no TPM or Secure Boot support. Users are encouraged not to do anything sensitive from a Mac. Under Linux, the signatures of the initrd aren't verified that makes some attacks possible. Matthew says Linux is "vulnerable out of the box, but can be configured to be better than Windows."

More details via his blog post and the CCC talk video that's embedded below.

10 Comments
Related News
Polychromatic 0.9 OpenRazer GUI Frontend Released With Port To PyQt6
Framework Raises $18M In New Funding, More Collaborations Coming With Cooler Master
Reverse Engineered MSI WMI Platform Driver Being Worked On For Linux
udev-hid-bpf To Help Enable HID-BPF Use Rather Than Kernel Drivers To Fix HID Hardware
Rockchip NPU Open-Source Driver Taking Shape, Will Aim For Upstream Accel Driver
TUXEDO Computers Launches First Linux Laptop With AMD Ryzen 7 8845HS
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
Rust-Written LAVD Kernel Scheduler Shows Promising Results For Linux Gaming
Former Nouveau Lead Developer Joins NVIDIA, Continues Working On Open-Source Driver
Fedora Linux 40 Cleared For Release Next Week
AMD: "Additional Parts Of The Radeon Stack To Be Open Sourced Throughout The Year"
Mozilla Finally Begins Offering Firefox ARM64 Linux Binaries
Ubuntu 24.04 Supports Easy Installation Of OpenZFS Root File-System With Encryption
openSUSE Factory Achieves Bit-By-Bit Reproducible Builds
Linux 6.10 Preps A Kernel Panic Screen - Sort Of A "Blue Screen of Death"