EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

11.29.12

UEFI Apologists Versus Germany’s Government Judgment on UEFI Insecurity

Posted in Europe, GNU/Linux, Kernel, Security at 5:31 pm by Dr. Roy Schestowitz

Flag of Germany

Summary: Proponents of UEFI support, who are sometimes Mono proponents as well, may struggle to reason in favour of crippleware given the way UEFI rejects Linux and the reasons the German authorities reject UEFI

T

HE Windows franchise is collapsing (ignore the Microsoft PR machine, which we’ll address in a separate post), so Microsoft created a breed of machines that won’t boot Linux. One blogger writes:

So do not buy that new shiny computer without knowing what pitfalls you may have to overcome in order to run a free operating system. As a footnote, the Secure Boot link is from an article on the Linux Foundation’s efforts written on ZDNet’s website all about how Microsoft is delaying the keys for Linux. Hmm, just one more reason to buy new equipment from alternate retailers that put Linux first or buy used.

Bottomley and the Linux Foundation cannot say much after they sold out (Novell plays a role for both) and Michael Larabel writes:

James Bottomley wrote a new blog post this morning about why the Linux Foundation really isn’t concerned about UEFI SecureBoot on ARM hardware (smart-phones, tablets, etc) compared to the work they are doing on x86 PCs with UEFI SecureBoot support for Linux.

Last month the Linux Foundation announced their UEFI SecureBoot plans for dealing with Microsoft Windows 8 PCs. Their plans basically equated to legally obtaining a Microsoft key and signing a small pre-bootloader that in turn could chain load a predesignated boot loader that would in turn boot Linux or any other operating system without having to deal with the SecureBoot mess. The signed pre-bootloader will be available from the Linux Foundation web-site for anyone to use along with the source-code, albeit not their private key. The foundation is still working to obtain a SecureBoot key and their SecureBoot focus has just been for x86 hardware.

With Linux users wondering why the Linux Foundation isn’t diving into some SecureBoot solution for ARM, James Bottomley wrote a lengthy explanation.

We also saw some feedback from vocal UEFI apologists, who are sometimes the same people who promote Mono. Yes, promoters of Microsoft’s (and Novell’s) Mono also promote or downplay the issues with Microsoft’s UEFI demands, but we won’t be linking to them. They provoke against this site. Anyway, here is the original post that seeded this debate. It says:

The answer to this comes in several parts: firstly in the PC space, Microsoft has an effective headlock on the OEM and ODMs: no desktop PC ships without a Windows compatibility sticker (the situation is different in the server market, but this is specifically about desktop PCs). Therefore in order to continue simply booting Linux on laptops and desktops, it is a huge priority to find a solution to this problem. Secondly: in the overall mobile marketplace, which encompasses tablets and smartphones, Microsoft has a very tiny presence: somewhere between 2-5%. Linux (Android) has the majority presence: by some counts, Android is >50% in this market space with Apple a close second. Therefore, a Microsoft mandate in an industry where they have no dominance is simply not really threatening (unlike the PC space where they have complete dominance).

The German authorities have already banned UEFI for their own use/machines on the face of it. So-called ‘secure’ boot is bad for national security. The “German government issues white paper on secure boot,” writes LWN:

A press release from FSF Europe (issued November 20) welcomes a white paper from the German federal government on trusted computing and secure boot. “Another demand by the FSFE is addressed by the government’s white paper. That before purchasing a device, buyers must be informed concisely about the technical measures implemented in this device, as well as the specific usage restrictions and their consequences for the owner: ‘Trusted computing security systems must be deactivated (opt-in principle)’ when devices are delivered… And ‘Deactivation must also be possible later (opt- out function) and must not have any negative impact on the functioning of hard- and software that does not use trusted computing functions.’” The white paper is in essence a non-binding call to manufacturers, but is significant as a statement from a major national government against restrictions imposed via secure boot that may foreshadow more significant government action. The white paper is available in both English and German.

The war on UEFI should carry on until this malpractice is eradicated. It is a defect, not a feature. It gives remote control over hardware.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

3 Comments

  1. Michael said,

    November 29, 2012 at 10:26 pm

    Gravatar

    MS does not make the machines in question.

    Cai6zohp Reply:

    “MS does not make the machines in question.”

    … and obviously MS does not impose these restrictions to OEM either !

    Michael Reply:

    Is there any evidence they do? If there is then fine… but even then it would only be on machines that ship with Windows. MS cannot make demands about machines that ship with other OSs.

What Else is New


  1. Links 15/4/2014: Lots of PCLinuxOS Releases, Ukraine Updates

    Links for the day



  2. Apple and Microsoft Actively Lobbying Against Patent Reform in the US

    Apple and Microsoft are reportedly intervening/interfering with US law in order to ensure that the law is Free/libre software-hostile



  3. Lawsuit by Microsoft Shareholder Targets Fine for Crimes Rather Than the Crimes Themselves

    A new lawsuit by a Microsoft shareholder shows everything that's wrong with today's model of accountability, where those who are responsible for crimes are accused of not avoiding fines rather than committing the crimes



  4. Public Institutions Must Dump PRISM-Associated Software

    Another reminder that taxpayers-subsidised services should refuse, as a matter of principle, to pay anything for -- let alone deploy -- proprietary software with back doors



  5. GNU/Linux News: The Opportunities Amid XP EOL

    Links for the day



  6. Microsoft Gets Its Money's Worth From Xamarin: PlayStation 4 Now Polluted by Microsoft

    The Trojan horse of Microsoft, Xamarin, is pushing .NET into Microsoft's console competitor



  7. After Brendan Eich Comes Chris Beard

    Having removed Brendan Eich using bullying and blackmail tactics, his foes inside Mozilla achieved too little as we have yet another man (coming from inside Mozilla) acting as CEO



  8. Healthcare News: Free Software in Health, Humanitarian Causes

    Links for the day



  9. Links 14/4/2014: MakuluLinux, Many Games, More Privacy News and Pulitzer Prize for NSA Revelations

    Links for the day



  10. TechBytes Episode 87: Catching up With Surveillance (NSA, GCHQ et al.)

    The first audio episode in a very long time covers some of the latest happenings when it comes to privacy and, contrariwise, mass surveillance



  11. Server News: KVM, ElasticHosts, Other GNU/Linux Items, and Open Network Linux

    Links for the day



  12. Hardware News: Freedom, Modding, Hackability on the Rise

    Links for the day



  13. Distributions News: GNU/Linux Distros

    Links for the day



  14. GNOME News: Financial Issues, Mutter-Wayland, West Coast Summit, Community Participation

    Links for the day



  15. KDE News: Kubuntu at the Centre Again KDE Applications Updated

    Links for the day



  16. Techrights Rising

    Effective immediately, Techrights will do what it takes to bring back old volume and pace of publishing



  17. Links: Surveillance, Intervention, Torture and Drones

    Links for the day



  18. Mobile Linux Not Just Android: Jolla, WebOS, and Firefox OS News

    Links for the day



  19. Google's Linux Revolution: New Gains for Android, Chrome OS (GNU/Linux)

    Links for the day



  20. Free/Libre Databases News: MongoDB, NoSQL, and MySQL Branches/Forks

    Links for the day



  21. Open Access on the Rise: Textbooks, Journals, Etc.

    Links for the day



  22. Finance Watch (Watching What's Not Being Watched): Economic Warfare/Class Injustice

    Links for the day



  23. Climate and Ecology Watch: News About a World Being Destroyed

    Links for the day



  24. Copyright News: DRM, Censorship, Megaupload, Hypocrisy, and Impact on the Internet

    Links for the day



  25. Sharing Works: Latest News Stories About Crowd-sourcing, Sharing, Transparency

    Links for the day



  26. Links 12/4/2014: Games

    Links for the day



  27. Links 12/4/2014: Applications

    Links for the day



  28. Links 12/4/2014: Instructionals

    Links for the day



  29. Political News: Protests Face a Ban, Covert Actions Continue, Cold War Era Imperialism, Privacy, and War on Justice

    Links for the day



  30. Ubuntu News: Themes, Unity 8, Meizu Phone, Ubuntu Touch, and Elementary OS

    Links for the day


CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts