EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

11.29.12

UEFI Apologists Versus Germany’s Government Judgment on UEFI Insecurity

Posted in Europe, GNU/Linux, Kernel, Security at 5:31 pm by Dr. Roy Schestowitz

Flag of Germany

Summary: Proponents of UEFI support, who are sometimes Mono proponents as well, may struggle to reason in favour of crippleware given the way UEFI rejects Linux and the reasons the German authorities reject UEFI

T

HE Windows franchise is collapsing (ignore the Microsoft PR machine, which we’ll address in a separate post), so Microsoft created a breed of machines that won’t boot Linux. One blogger writes:

So do not buy that new shiny computer without knowing what pitfalls you may have to overcome in order to run a free operating system. As a footnote, the Secure Boot link is from an article on the Linux Foundation’s efforts written on ZDNet’s website all about how Microsoft is delaying the keys for Linux. Hmm, just one more reason to buy new equipment from alternate retailers that put Linux first or buy used.

Bottomley and the Linux Foundation cannot say much after they sold out (Novell plays a role for both) and Michael Larabel writes:

James Bottomley wrote a new blog post this morning about why the Linux Foundation really isn’t concerned about UEFI SecureBoot on ARM hardware (smart-phones, tablets, etc) compared to the work they are doing on x86 PCs with UEFI SecureBoot support for Linux.

Last month the Linux Foundation announced their UEFI SecureBoot plans for dealing with Microsoft Windows 8 PCs. Their plans basically equated to legally obtaining a Microsoft key and signing a small pre-bootloader that in turn could chain load a predesignated boot loader that would in turn boot Linux or any other operating system without having to deal with the SecureBoot mess. The signed pre-bootloader will be available from the Linux Foundation web-site for anyone to use along with the source-code, albeit not their private key. The foundation is still working to obtain a SecureBoot key and their SecureBoot focus has just been for x86 hardware.

With Linux users wondering why the Linux Foundation isn’t diving into some SecureBoot solution for ARM, James Bottomley wrote a lengthy explanation.

We also saw some feedback from vocal UEFI apologists, who are sometimes the same people who promote Mono. Yes, promoters of Microsoft’s (and Novell’s) Mono also promote or downplay the issues with Microsoft’s UEFI demands, but we won’t be linking to them. They provoke against this site. Anyway, here is the original post that seeded this debate. It says:

The answer to this comes in several parts: firstly in the PC space, Microsoft has an effective headlock on the OEM and ODMs: no desktop PC ships without a Windows compatibility sticker (the situation is different in the server market, but this is specifically about desktop PCs). Therefore in order to continue simply booting Linux on laptops and desktops, it is a huge priority to find a solution to this problem. Secondly: in the overall mobile marketplace, which encompasses tablets and smartphones, Microsoft has a very tiny presence: somewhere between 2-5%. Linux (Android) has the majority presence: by some counts, Android is >50% in this market space with Apple a close second. Therefore, a Microsoft mandate in an industry where they have no dominance is simply not really threatening (unlike the PC space where they have complete dominance).

The German authorities have already banned UEFI for their own use/machines on the face of it. So-called ‘secure’ boot is bad for national security. The “German government issues white paper on secure boot,” writes LWN:

A press release from FSF Europe (issued November 20) welcomes a white paper from the German federal government on trusted computing and secure boot. “Another demand by the FSFE is addressed by the government’s white paper. That before purchasing a device, buyers must be informed concisely about the technical measures implemented in this device, as well as the specific usage restrictions and their consequences for the owner: ‘Trusted computing security systems must be deactivated (opt-in principle)’ when devices are delivered… And ‘Deactivation must also be possible later (opt- out function) and must not have any negative impact on the functioning of hard- and software that does not use trusted computing functions.’” The white paper is in essence a non-binding call to manufacturers, but is significant as a statement from a major national government against restrictions imposed via secure boot that may foreshadow more significant government action. The white paper is available in both English and German.

The war on UEFI should carry on until this malpractice is eradicated. It is a defect, not a feature. It gives remote control over hardware.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

3 Comments

  1. Michael said,

    November 29, 2012 at 10:26 pm

    Gravatar

    MS does not make the machines in question.

    Cai6zohp Reply:
    November 30th, 2012 at 10:33 am

    “MS does not make the machines in question.”

    … and obviously MS does not impose these restrictions to OEM either !

    Michael Reply:
    November 30th, 2012 at 10:50 am

    Is there any evidence they do? If there is then fine… but even then it would only be on machines that ship with Windows. MS cannot make demands about machines that ship with other OSs.

What Else is New

  1. White House Should Identify USPTO as the Problem, Not Patent Trolls

    Continued analysis, accompanied by new stories, of the patent situation and what is needed to address the increasingly recognised harms of patents

  2. British and German Governments Under Siege by Lobbyists of Microsoft and Its Local Partners, Free Software Policy Dumped in Favour of Backdoors-Enabled Binaries

    Following lobbying and perhaps intimidation or bribery, Microsoft binaries with privileged access to them (ripe for cracking by the malpractising NSA/CIA) are being put ahead of Free/libre software, despite the latter being recently mandated

  3. Links 18/6/2013: Ubuntu Linux for Phones Attracts Carriers, Nokia Might be Saved by China/Android

    Links for the day

  4. Judge Jackson Dies While Microsoft Continues to Abuse the System, This Time Using Nokia as a Front

    The abusive behaviour of Microsoft continues unabated long after Judge Jackson warned about the sociopathic management and its dangers

  5. Microsoft Dirty Tricks to Promote Xbox One Vapourware

    The hallmarks of Microsoft -- AstroTurfing, vapourware, developers disdain and interference with journalism -- found sparingly in the gaming consoles scene

  6. Microsoft is Not Done With SCO Yet

    The SCO v. IBM case is reopened, despite a glaring lack of funds, resuming the FUD against Linux

  7. Boycott Best Buy

    The company with history of hostility towards GNU/Linux is now becoming part of Microsoft

  8. Links 17/6/2013: Android's Extended Lead Over iOS, Sony Smartwatch Gets FOSS

    Links for the day

  9. IRC Proceedings: June 9th, 2013-June 15th, 2013

    IRC logs for June 9th, 2013 (and subsequent days until June 15th, 2013)

  10. Upgrading/Updating Techrights

    Server maintenance complete, making pageloads faster and the Web site more robust, hence resilient against attacks

  11. Links 15/6/2013: IBM and KVM, KDE 4.11 Beta

    Links for the day

  12. Confirmed: Microsoft Tells the NSA About Back Doors in Windows

    Official confirmation that the NSA is being notified about ways of hijacking Windows before Microsoft releases fixes

  13. Still Missing the Point of Patent Scope (Patents on Mathematics and Nature) as the Problem in the United States

    Examples of some new reports that deal with the suggested patent reform in the US and why it is misguided

  14. Germany Should Follow the 'Munich Model' and Move to Free Software After PRISM Revelations

    Despite the success story of Munich and the increasing distrust surrounding proprietary software, bureaucrats in Berlin refuse to abandon Microsoft just yet

  15. Bill Gates Looking for Profit in Privatised Oppression in the United Kingdom and Elsewhere

    Famous criminal Bill Gates pays the privatised police forces in the UK to get more profit while keeping popular movements dampened

  16. Links 14/6/2013: Linux Innovation Debated, Video of Megaupload Raid

    Links for the day

  17. As the Battle to Legitimise Software Patents in New Zealand and Europe Carries on, New Systemic Corruption Found

    A roundup of stories from battlegrounds for software patents "as such"

  18. Microsoft Talking Points Planted by Microsoft Staff in the Geek Press

    Microsoft is playing with editorial staff of Slashdot, marketing itself as a FOSS company

  19. A Big Blow to Patents on Software and Genetics in the United States, But Hardly the End

    Little progress made with policy moving in the right direction, but by no means the right and absolute solution to USPTO incompetence

  20. Microsoft Supports Apple in Fight Against Linux/Android, Pushing FRAND

    Microsoft publicly steps forward as part of Apple's war on Linux/Android, making the anti-FOSS alliance more visible than before

  21. Rape Jokes Are Not Going to Save Microsoft

    Microsoft's attempts at being "cool" are not working out and the Vista series is falling to obscurity levels

  22. Glenn Greenwald Should Copy Snowden's Leak for Wikileaks to Publish in Full in Order to Counter Denials of Microsoft et al. (Updated)

    There should be more to come from the whole PRISM/NSA-gate, but the ball is in the court of one activist/lawyer/blogger, Glenn Greenwald

  23. Links 13/6/2013: CyanogenMod Gets Incognito Mode

    Links for the day

  24. Links 12/6/2013: Linux 3.11 Previews, KDE Working in Wayland

    Links for the day

  25. CNN: Where Agenda and Lobbying Trump Facts and Justice

    Corporate propaganda channel is being used by a Microsoft lobbyist to demonise Android -- not companies that attack Android -- by essentially twisting reality

  26. Obama Administration Misuses the 'T Word' (Troll) to Dodge Serious Issues

    Failing to see how patents themselves actually distort the market for everyone (not just some large corporations), Obama wants to wash his hands with legislation that will resolve nothing and legitimise the notoriously unsupervised patent regime

  27. Links 11/6/2013: More on PRISM and Snowden, Linux Mint Increasingly Praised

    Links for the day

  28. PRISM Lite: Bill Gates and Rupert Murdoch Collecting Information About Everybody's Children

    A surveillance scheme for juniors and how it is being used to program the young generation to support patent monopolies of Bill Gates, such as GMO

  29. White House Should Go After the Trolls' Ringleaders, Not Just Patent Trolls

    Why the stance of the White House is misguided and short-sighted in an age when trolls are like mercenaries for players in conspiracies and pyramid schemes of patents

  30. Novell's Acquirer Says the Brand Was Tarnished

    Attachmate's CEO acknowledges that Novell lost much of its lustre when it was acquired

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts