Misc. BSD/UNIX Microsoft's Lennart Poettering proposes tightening up Linux boot process

J65nko · #1 **(View Single Post)** 28th October 2022

From https://www.theregister.com/2022/10/...ft_poettering/

Quote:

Lennart Poettering's latest blog post proposes moving the Linux boot process into a "Brave New Trusted Boot World" of cryptographically signed Unified Kernel Images.

Agent Poettering offers a mechanism for tightening up the security of the system startup process on Linux machines, using TPM 2.0 hardware. In brief, what he sees as the problem is that on hardware with Secure Boot enabled, while the boot process up to and including the kernel is signed, the next step, loading the initrd, is not. That's what he wants to fix.

Thread Tools
Show Printable Version Email this Page
Display Modes
Switch to Linear Mode Switch to Hybrid Mode Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
The linker starts at the boot process.	Zielonykid123	OpenBSD General	2	7th May 2022 11:24 AM
Linux Foundation struggles with Microsoft's Secure Boot signing service	J65nko	News	0	21st November 2012 08:44 PM
Other CODE QUOTE: Lennart Poettering	vermaden	News	13	12th March 2011 08:25 PM
Loader, MBR and the boot process	Jago	FreeBSD Installation and Upgrading	1	22nd January 2010 04:52 AM
Daemon Process not starting on boot	map7	FreeBSD General	4	11th September 2008 04:24 PM