EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

05.26.13

Techrights Advises UEFI Forum to Withdraw ‘Secure’ Boot Support

Posted in DRM, Tivoization at 1:22 pm by Dr. Roy Schestowitz

UEFI logo

Summary: Short synopsis of a long discussion with the UEFI Forum regarding ‘secure’ boot

We don’t always speak to figures of authority in pursuit of reform, but when we do, it is rather productive (pardon the meme). OIN is a good example of this. Last year, UEFI criticism began as a ‘feature’ of UEFI, namely ‘secure’ boot, was put to use by Microsoft, which basically misused it for anticompetitive reasons, making it hard to boot GNU/Linux.

“Security was not the main outcome of UEFI ‘secure’ boot being put in place.”The UEFI Forum got in touch with yours truly, setting up an interview for exchange of thoughts and ideas. It was productive because a consensus we reached was that ‘secure’ or Restricted Boot in UEFI has no purpose (or little purpose) other than to serve or facilitate business models of corporations, at the expense of customers. It is akin to DRM and TiVoization and it is hard to defend the inclusion of this antifeature, for reasons we covered here before . It was a one-hour conversation mostly with the president of the UEFI Forum, who is a technical and humble man. I politely made suggestions for UEFI, focusing on freedom aspects, and there was no lack of subjects to discuss (including patents). After an hour had lapsed we decided to call it a day (it was Friday night and I was already late to meet some friends at a local pub), but the mutual sentiment can be described as amicable. I accepted the invitation hoping it would lead to progress, not friction. The phone conference focused on questions pertaining to UEFI, with clear focus on the negative aspects, i.e. areas of improvement. In it were UEFI spokespersons Mark Doran, UEFI President, and Michael Krau, UEFI Forum’s Industry Communications Working Group (ICWG) Chair. A lady called Christine was there also, but she did not participate in the technical discussion; she had helped set it all up.

To summarise some of the key points, it was agreed that ‘secure’ boot only gives UEFI Forum a lot of negative publicity. Other issued were raised, but none else got the same amount of coverage, I had not prepared notes, mostly because the goal was to focus on freedom and not to deviate from that. UEFI Forum’s President was understanding. He said I was asking the right questions and did acknowledge that some of my concerns were legitimate (the conversation was recorded with consent from them, but it is not for publication).

Security was not the main outcome of UEFI ‘secure’ boot being put in place. They agreed to some degree. That’s why it was productive as a lengthy debate.

Towards the end, emanating from the conversation were the following tips and links, prepared and sent by Christine, who had also been on the conference call. She wrote:


> Thank you for taking the time to speak with us to address your questions
> regarding the UEFI Forum. If you have any additional questions or need
> information, please don’t hesitate to reach out to me.
>
>
>
> For your reference, I’m including a link to an abstract of the
> presentation
> http://www.linuxtag.org/2013/de/program/freitag-24-mai-2013.html?eventid=6
> referenced today by Mark Doran, President of the UEFI Forum, and
> delivered by Matthew Garrett at the Linux Tag conference in Berlin. The
> title of Garrett’s presentation is “Making UEFI Secure Boot Work for Linux.”
>
>
>
> During the call, Mark also suggested that you might want to view the
> repository of information pertaining to UEFI at Tianocore.org
> http://sourceforge.net/apps/mediawiki/tianocore/index.php?title=Welcome,
> a community site surrounding the open source components of Intel’s
> implementation of UEFI.
>
>
>
> And following are links to the three Intel YouTube videos Mark
> referenced about UEFI Secure Boot configuration:
>
> · Part 1 http://www.youtube.com/watch?v=eAnlhkbMang – Enabling
> & Disabling UEFI Secure Boot. Instructions for setting up a system with
> UEFI Secure Boot to dual-boot between Microsoft* Windows* 8 & Ubuntu*
> 12.10.
>
> · Part 2 http://www.youtube.com/watch?v=dwlbf1VRJ60 -UEFI
> dual-boot setup with Microsoft* Windows* 8. Instructions for setting up
> a system with UEFI Secure Boot to dual-boot between Microsoft Windows 8
> & Ubuntu 12.10.
>
> · Part 3 http://www.youtube.com/watch?v=eAnlhkbMang – UEFI
> dual-boot setup with Linux* (Ubuntu* 12.10). Instructions for setting up
> a system with UEFI Secure Boot to dual-boot between Microsoft* Windows*
> 8 & Ubuntu* 12.10.
>
>
>
> Again, thank you for your time, and please let me know if I can provide
> you with additional information.

To go along with ‘secure’ boot is to help endorse what sure has become a threat to booting freedom, not just to choice. The conference did not alter my mind in any way on this topic. The key point, as was made abundantly clear to them, is that ‘secure’ boot does a major disservice to UEFI by giving it bad reputation — an inevitability when a convicted monopolist like Microsoft perturbs UEFI for non-technical reasons.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email
  • Google Bookmarks

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

3 Comments

  1. Needs Sunlight said,

    May 26, 2013 at 2:17 pm

    Gravatar

    It sounds like it went well and established that you are all on about the same page. I hope they didn’t persist in the myth about it helping security though. Did that come up?

    Dr. Roy Schestowitz Reply:

    Mark Doran believes that DRM is about overcoming broken business models, not security; when challenged on security of ‘secure’ boot he mostly accepted my arguments and could not counter many.

  2. lozz said,

    May 28, 2013 at 9:18 am

    Gravatar

    Maybe, we should call EUFI “secure boot”, phantomware.

    We used to have vapourware, where M$ would claim to be developing startling new software that never eventuated.

    UEFI actually exists but does nothing to support its claimed purpose of improving security.

    Its only purpose seems to be an attempt towards making things more difficult in installing dual boot systems on M$ computers.

What Else is New


  1. [Humour/Meme] Wear the Red Hat as the Open Org Becomes Openwash

    IBM is changing Red Hat and not for the better; sooner or later IBM will become another Microsoft and changing from one to the other will be like swapping 'masters'



  2. IBM is Imposing Non-Free, Privacy-Infringing Tools and Patent Tolls on Red Hat Staff

    There are signs that Red Hat under IBM will be more like assimilation to IBM, not IBM assimilating to the 'Red Hat way' or the so-called 'open org'



  3. They Tell the Free Software Community That It is Racist While Saying Nothing at All About Trump's Racism (Because He Gives Them Government and Military Contracts)

    While their president compares 'foreign' people to a virus (using innuendo, dog whistles and racist rhetoric reminiscent of the Nazi era) the big US corporations (American surveillance giants) turn their attention to rather innocuous words inside people's code (which almost nobody sees anyway)



  4. LibreOffice 'Personal Edition' Seems Like a Marketing and Communication Fluke

    Had LibreOffice developers (and the Document Foundation) communicated these changes more openly, they would have averted/avoided some of the FUD



  5. It Almost Feels Like Microsoft Has Already 'Bought' Canonical

    Canonical's disturbing trajectory and betrayal of the community continue unabated; one can easily get the impression that Ubuntu exists to help Microsoft at some level



  6. Update to GNU Project Bleeding into Microsoft

    Update



  7. Microsoft is Going to Get Tired of Whining About “GAFA” and Accept That It's Just as Bad If Not a Lot Worse at Privacy

    Microsoft is being treated by the US government as if it's not abusing anything, let alone people's privacy; if anything, this demonstrates the degree to which Microsoft infiltrated or 'vendor-captured' regulatory branches



  8. Links 6/7/2020: LibreOffice 7.0 RC1, MX-19.2 KDE Beta 1, Linux 5.8 RC4

    Links for the day



  9. ZDNet's 'Linux' Section: Linux is Full of Problems and It Loves/Embraces Software Patents

    Software patents promotion and GNU/Linux FUD; your daily dosage of 'news' from the tabloid known as ZDNet...



  10. IRC Proceedings: Sunday, July 05, 2020

    IRC logs for Sunday, July 05, 2020



  11. Links 5/7/2020: Slackel 7.3 Mate Beta and GNOME Gingerblue

    Links for the day



  12. Technological Progress? Only If We Assume The Wrong Things...

    When we're told that we're all dumb we're being given increasingly dumb technology (and they tell us dumber is better)



  13. Linux Foundation Still Owned and Controlled Largely -- and More Over Time -- by Surveillance Companies (Openwashing Services for Bad Practices and Bad Actors)

    The Linux Foundation‘s growing role in spying or the focus on data-mining operations is an eternal reminder or warning that the Foundation follows power and money, not freedom or ethics (it began as a salary-paying venture, crowdfunding among large corporations which conduct mass surveillance)



  14. Sharing is Caring, as Those Who Share Usually Care

    Going back to our human roots, people who cooperate and collaborate are vastly more likely to survive and thrive; Free software is almost guaranteed to become the norm when/once everyone demands it (proprietary software is too divisive, supremacist and even racist)



  15. Systems Can Crash and People Can Die by Changing Language (Even in Parameter and Function Space) to Appease Activists

    It seems clear that Intel takes the lead in trying to change Linux not in technical means but purely social means; even when (and where) that can compromise the robustness of the kernel (Intel is nowadays known for profoundly defective chips with back doors)



  16. António Campinos Should Speak to Peasants, Not Litigation Lawyers

    Mr. Campinos does not work for campinos but against campinos; he represents the people who sue or threaten them using ludicrous patents that should never have been granted (e.g. in Ethiopia)



  17. Christine Lambrecht (German Minister of Justice and Consumer Protection) Ignores the Fact That Even Patent Experts Reject the Unitary Patent (UPC)

    The debacle single-handedly caused by and attributable to Christine Lambrecht, who is eager to appease litigation lawyers, is made yet worse by the fact that people in this domain/profession reject what she's trying to ram down people's throats



  18. [Humour] The Linux Foundation is Not Even Using Linux

    The Linux Foundation does not support Linux except in name; it is important to remember that



  19. Microsoft Loves Power

    An explanation of why Microsoft says it loves this and that; Microsoft lacks the capacity to love or to express empathy as it's always about self gratification or coercion, nothing else



  20. IRC Proceedings: Saturday, July 04, 2020

    IRC logs for Saturday, July 04, 2020



  21. Indoors Society, Shut the Windows

    Times are changing in all sorts of ways; it seems like GNU/Linux and other Free/libre operating systems may emerge as winners when the 'dust settles'



  22. Allegation That Microsoft Adopted the Mentality of Suicide Bombers Against Linux, Leaks Reveal

    Looking at leaked E-mails from around the time Microsoft used Cyanogen as a 'proxy', we're finding some stunning admissions or speculation about the real motivations



  23. [Humour] A Union in Whose Interests?

    The union-busting 'yellow union' (the one that helped Benoît Battistelli marginalise SUEPO) is unable to represent staff any longer



  24. FFPE EPO Has Rendered Itself Obsolete by Liaising With Benoît Battistelli

    FFPE EPO has been left out of staff representation, demonstrating that liaising with the oppressor is a self-deprecating move which must be avoided (the only remaining potent union is SUEPO)



  25. Links 4/7/2020: LibreOffice 7.0 'Personal Edition', Atari VCS Coming Soon

    Links for the day



  26. [Humour/Meme] The 'New' Edge (Chrome Copycat) is Already Dead, So Microsoft is Trying to Just Kill the Competition

    Edge market share is so minuscule that it doesn’t even make it into this chart (it’s in “other”); no wonder Microsoft now bullies Windows users into using it, for users reject it even after months of endless advertising/AstroTurfing and aggressive exploitation/appropriation



  27. Fourth of July in the United Kingdom and the United States

    In these bizarre times Independence Day is still being celebrated, even as so many people are out of work, running out of hope and being fed xenophobia in social control media with a racist 'celebrity' president (the "user in chief")



  28. [Humour] Bigger is Always Better When You're a Deluded Maximalist

    The EPO totally lost sight of its mission; it's just speeding everything up, very carelessly, not minding quality and accuracy/certainty/legal validity



  29. 'Managing Intellectual Property' Managing to Become Uncritical Parrot of EPO Management

    Managing to amplify the EPO's lies isn't hard; one just needs to copy, paste, edit a little; then they call it 'journalism', irrespective of the proven track record of EPO management lying to staff and to the media



  30. IRC Proceedings: Friday, July 03, 2020

    IRC logs for Friday, July 03, 2020


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts