01.13.12

Gemini version available ♊︎

Microsoft Fanatics Were Wrong, Linux Indeed Attacked by UEFI (Updatedx2)

Posted in Microsoft at 7:41 pm by Dr. Roy Schestowitz

Ed Bott

Summary: More information about UEFI leaves no doubt about Microsoft’s intentions to sabotage and cheat

IN OUR previous posts about UEFI (aka “secure” boot) [1, 2, 3] we showed that Microsoft was still a corrupt company looking to break the rules to make money. Aaron Williamson from the SFLC writes the article “Microsoft confirms UEFI fears, locks down ARM devices”:

At the beginning of December, we warned the Copyright Office that operating system vendors would use UEFI secure boot anticompetitively, by colluding with hardware partners to exclude alternative operating systems. As Glyn Moody points out, Microsoft has wasted no time in revising its Windows Hardware Certification Requirements to effectively ban most alternative operating systems on ARM-based devices that ship with Windows 8.

The Certification Requirements define (on page 116) a “custom” secure boot mode, in which a physically present user can add signatures for alternative operating systems to the system’s signature database, allowing the system to boot those operating systems. But for ARM devices, Custom Mode is prohibited: “On an ARM system, it is forbidden to enable Custom Mode. Only Standard Mode may be enable.” [sic] Nor will users have the choice to simply disable secure boot, as they will on non-ARM systems: “Disabling Secure [Boot] MUST NOT be possible on ARM systems.” [sic] Between these two requirements, any ARM device that ships with Windows 8 will never run another operating system, unless it is signed with a preloaded key or a security exploit is found that enables users to circumvent secure boot.

Glyn Moody adds:

In December 2011, Microsoft published a document entitled “Windows Hardware Certification Requirements” for client and server systems. As the introduction explains:

This release to web (RTW) document contains the Windows Hardware Certification requirements for Windows 8 Certified Systems. These requirements are Microsoft’s guidelines for designing systems which successfully meet Windows performance, quality, and feature criteria, to assure the optimum Windows 8 computing experience. Successfully following this guidance will allow a partner to receive certification for their system.

On page 116 of this document, there are some details about the circumstances under which Secure Boot can be disabled:

MANDATORY: Enable/Disable Secure Boot. On non-ARM systems, it is required to implement the ability to disable Secure Boot via firmware setup. A physically present user must be allowed to disable Secure Boot via firmware setup without possession of Pkpriv. Programmatic disabling of Secure Boot either during Boot Services or after exiting EFI Boot Services MUST NOT be possible. Disabling Secure MUST NOT be possible on ARM systems.

This confirms that it is indeed possible to disable Secure Boot – but only on non-ARM systems (i.e. traditional PCs.) In other words, it would appear that Microsoft is still locking out GNU/Linux from installation on ARM-based Windows 8 machines.

So this leaves me confused. The document was published some time after Microsoft’s post where it states “Microsoft does not mandate or control the settings on PC firmware that control or enable secured boot from any operating system other than Windows”, and yet it seems to contradict it. So what’s going here? Was Microsoft’s blog statement only about non-ARM systems, as the new documentation suggests? And if so, why the discrimination? And finally, is ARM really happy to see Microsoft apparently locking out GNU/Linux from its systems in this way? Let’s hope Microsoft can clarify this situation as it did on the previous occasion.

This leaves no room for excuses. Microsoft’s bribed systematic liars/spinners, such as Ed Bott, were just trying to keep regulators away. It’s time to nail down Microsoft for interfering with fair competition in more than a single way. Just because Microsoft is imploding or collapsing does not entitle it/give it a right to sabotage competitors. This harms everyone.

Update: SJVN weighs in shortly afterwards:

Microsoft and its vendor friends said that there’s no Windows 8 plot to lock other operating systems from Windows 8 devices, but now we know Microsoft was not telling the whole truth.

Journalist Glyn Moody dug around Microsoft’s Windows Hardware Certification Requirements for Windows 8 client and server systems and found on page 116 that will Windows 8 Secure Boot can be disabled: on Intel systems, “Disabling Secure [Boot] must not be possible on ARM systems.”

Update #2: Microsoft now receives the Slashdot treatment. As one person put it: “Oh boy, the lawyers must be rubbing their hands over this. The flaw in Microsoft’s aim of course is that next to no one wants a Microsoft mobile gadget.”

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

4 Comments

  1. Michael said,

    January 13, 2012 at 8:23 pm

    Gravatar

    Wait… are you a supporter of free and fair competition now? Does that mean you are going to speak out against Google/Samsung for not playing fair and plagiarizing Apple?

    Wait… no, you are not.

    I wish you could be consistent.

  2. Mikko said,

    January 18, 2012 at 8:25 am

    Gravatar

    Michael is a troll and a member of apple invented everything in technology and everybody else are just stealing from apple

    Michael Reply:

    That is silly. Why troll me and not try to refute my claims?

    Remember, the evidence that Samsung plagiarized Apple is rock solid:

    http://i.imgur.com/TmUj2.jpg
    http://goo.gl/S2AJR
    http://goo.gl/bWDs6
    http://goo.gl/NjrfV

    If you have a reasoned counter, something more than just empty denial, I am open to reading it.

    But you do not – hence the reason you leave the topic behind to call me names and make up stories about me and my views.

  3. mrkennie said,

    January 18, 2012 at 12:16 pm

    Gravatar

    I wondered when this would happen and probably will be allowed to happen just like MSXML became an ISO standard and SOPA will be passed. Rich Corporations run the US. Democracy? What is that again?

DecorWhat Else is New


  1. Microsoft Corporation is Still Protecting a Violent Criminal Who Assaults Women (Employing Him as Manager, Protecting Him From Arrest, Paying Him a Salary)

    Ahead of court and amid arrest warrant Microsoft still deems this a good idea? Then again, this same company works for ICE, helping to kidnap babies from their mothers...



  2. Links 8/12/2021: Linux 5.15.7 Out, Linux Mint 20.3 is Near

    Links for the day



  3. Links 8/12/2021: Zorin OS 16 Milestone and Calculate Linux 22 Released; Kubernetes 1.23

    Links for the day



  4. A Call for Sources and Whistleblowers From Microsoft's GitHub

    Remarks on our publications from this morning and a call for more leakers and whistleblowers, who know GitHub better than anybody else (including lots of fools who still outsource all of their hard labour to Microsoft through GitHub)



  5. [Teaser] Rape is Not a Joke

    Having just uploaded a police report, we’re starting to move the ongoing series to the next phase, which will still be — for the most part — weekly installments on Mondays (for months to come)



  6. [Teaser] Meet Microsoft’s Chief Architect of GitHub Copilot, Balabhadra (Alex) Graveley (Updated)

    Alex Graveley, a serial abuser, has been protected by Microsoft; what does that say about Microsoft and about Nat Friedman, GitHub’s CEO whom Alex considers his "best friend"? Stay tuned as we have plenty more to show



  7. IRC Proceedings: Tuesday, December 07, 2021

    IRC logs for Tuesday, December 07, 2021



  8. Links 8/12/2021: FreeBSD 12.3, EasyOS 3.1.13, and WordPress 5.9 Beta 2

    Links for the day



  9. [Meme] EU Assurances

    The EPO‘s staff cannot be blamed for losing patience as elected public representatives completely fail to do their job (with few exceptions)



  10. Clare Daly (GUE/NGL) Does What Every Public Official in Europe Should Have Done About EPO Shenanigans

    There’s another (new) push to hold the EPO accountable, seeing that the overseers clearly do not do their job and instead cover up the abuses



  11. Links 7/12/2021: Firefox 96 Beta and Fedora 37 Abandons ARMv7

    Links for the day



  12. Links 7/12/2021: Plasma Mobile Gear 21.12 and Tails 4.25

    Links for the day



  13. All IRC Logs Now Available as GemText Over Gemini Protocol

    Today we've completed the transition from plain text over gemini:// to GemText over gemini:// for IRC logs



  14. IRC Proceedings: Monday, December 06, 2021

    IRC logs for Monday, December 06, 2021



  15. [Meme] Rowing to the Bottom of the Ocean

    The EPO‘s Steve Rowan (VP1) is failing EPO staff and sort of “firing” workers during times of crisis (not at all a crisis to the EPO’s coffers)



  16. EPO Gradually Reduced to 'Fee Collection Agency' Which Eliminates Its Very Own Staff

    Mr. Redundancies and Mr. Cloud are outsourcing EPO jobs to Microsoft and Serco as if the EPO is an American corporation, providing no comfort to long-serving EPO staff



  17. Linux Foundation 2021 Annual Report Made on an Apple Mac Using Proprietary Software

    Yes, you’re reading this correctly. They still reject both “Linux” and “Open Source” (no dogfooding). This annual report is badly compressed; each page of the PDF is, on average, almost a megabyte in size (58.8 MB for a report of this scale is unreasonable and discriminates against people in countries with slow Internet connections); notice how they’re milking the brand in the first page (straight after the cover page, the 1991 ‘creation myth’, ignoring GNU); remember that this foundation is named after a trademark which is not even its own!



  18. Links 7/12/2021: OpenIndiana Hipster 2021.10 and AppStream 0.15

    Links for the day



  19. Microsoft “Defender” Pretender Attacks Random Software That Uses NSIS for installation; “Super Duper Secure Mode” for Edge is a Laugh

    Guest post by Ryan, reprinted with permission



  20. Links 6/12/2021: LibreOffice Maintenance Releases, Firefox 95 Finalised

    Links for the day



  21. “Wintel” “Secure” uEFI Firmware Used to Store Persistent Malware, and Security Theater Boot is Worthless

    Guest post by Ryan, reprinted with permission



  22. No Linux Foundation IRS Disclosures Since 2018

    The publicly-available records or IRS information about the Linux Foundation is suspiciously behind; compared to other organisations with a "tax-exempt" status the Linux Foundation is one year behind already



  23. Jim Zemlin Has Deleted All of His Tweets

    The Linux Foundation‘s Jim Zemlin seems to have become rather publicity-shy (screenshots above are self-explanatory; latest snapshot), but years ago he could not contain his excitement about Microsoft, which he said was "loved" by what it was attacking. Days ago it became apparent that Microsoft’s patent troll is still attacking Linux with patents and Zemlin’s decision to appoint Microsoft as the At-Large Director (in effect bossing Linus Torvalds) at the ‘Linux’ Foundation’s Board of Directors is already backfiring. She not only gets her whole salary from Microsoft but also allegedly protects sexual predators who assault women… by hiring them despite repeated warnings; if the leadership of the ‘Linux’ Foundation protects sexual predators who strangle women (even paying them a salary and giving them management positions), how can the ‘Linux’ Foundation ever claim to represent inclusion and diversity?



  24. Microsoft GitHub Exposé — Part IX — Microsoft's Chief Architect of GitHub Copilot Sought to be Arrested One Day After Techrights Article About Him

    Balabhadra (Alex) Graveley has warrant for his arrest, albeit only after a lot of harm and damage had already been done (to multiple people) and Microsoft started paying him



  25. The Committee on Patent Law (PLC) Informed About Overlooked Issues “Which Might Have a Bearing on the Validity of EPO Patents.”

    In a publication circulated or prepared last week the Central Staff Committee (CSC) of the EPO explains a situation never explored in so-called 'media' (the very little that's left of it)



  26. Links 6/12/2021: HowTos and Patents

    Links for the day



  27. IRC Proceedings: Sunday, December 05, 2021

    IRC logs for Sunday, December 05, 2021



  28. Gemini Space/Protocol: Taking IRC Logs to the Next Level

    Tonight we begin the migration to GemText for our daily IRC logs, having already made them available over gemini://



  29. Links 6/12/2021: Gnuastro 0.16 and Linux 5.16 RC4

    Links for the day



  30. Links 5/12/2021: Touchpad Gestures in XWayland

    Links for the day


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts