[Discuss] Fighting UEFI
Daniel Feenberg
feenberg at nber.org
Sun Jul 29 06:42:31 EDT 2012
On Sat, 28 Jul 2012, Chuck Anderson wrote:
> On Sat, Jul 28, 2012 at 06:23:33PM -0500, Jack Coats wrote:
>> I am guessing someone will either come up with a crack, or will buy a
>> 'certificate' and it will be 'leaked' or otherwise subverted before
>> long.
>>
>> I could envision a boot program could have it installed, and just be
>> used as a system loader like grub, and it would be the boot loader
>> that has a certificate rather than the entire system. It won't take
>> long for the 'license cost' to be amortized to under $.01 per system.
>
> If that happens, the key will just be revoked.
How will a motherboard check for revoked keys? Will the vendor add them to
a list in ROM? I can't imagine BIOS vendors will be enthusiastic about
that chore, or be prompt in doing so.
dan feenberg
> _______________________________________________
> Discuss mailing list
> Discuss at blu.org
> http://lists.blu.org/mailman/listinfo/discuss
>
More information about the Discuss
mailing list