[Ksummit-2012-discuss] [ATTEND] ACPI, UEFI, kernel security

Matthew Garrett mjg59 at srcf.ucam.org
Thu Jun 28 14:47:21 UTC 2012


On Thu, Jun 28, 2012 at 11:28:18AM +0900, Masami Hiramatsu wrote:

> As far as I know, secure boot is not only for booting but it also
> including authentication of all executable binaries include
> applications. Thus, the user can't execute any untrusted (not-signed)
> binary and programs, as like as viruses, (unauthenticated:))malwares.

No, it doesn't imply any signing of userspace.

-- 
Matthew Garrett | mjg59 at srcf.ucam.org


More information about the Ksummit-2012-discuss mailing list