EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

06.06.13

UEFI ‘Secure’ Boot is Not About Security, Insyde Software’s Business Model is Misguided and Dangerous

Posted in GNU/Linux, Kernel, Security at 9:10 am by Dr. Roy Schestowitz

Corporate insecurity for Insyde Software, corporate security for Microsoft

UEFI

Summary: Promotion of bad ideas by Insyde Software merits another discussion about what UEFI actually means to ordinary GNU/Linux users

The main problem with UEFI is its effect on freedom. It’s not just about restricted boot but also patents and other issues covered in the criticism section in Wikipedia.

A new press release from Taiwan describes UEFI as a security mechanism, but this is utter fiction. Last month I spoke for over an hour with the president of the UEFI Forum, covering in length the aspect of security. He too was led to agreeing with me that security is hardly improved by UEFI, which can have its barriers bypassed and ignored. The press release says something like this:

Insyde Software, a leading provider of Unified Extensible Firmware Interface (UEFI) BIOS, today announced the availability of new UEFI security features including Secure Boot and secure firmware update for leading Linux distributions.

No, thanks. Linux does not need UEFI for security. Even Torvalds rejects the 'security' claim (he dislikes ‘secure’ boot in general [1, 2]). So the above is a marketing gimmick, that’s all. Insyde Software will boost flawed claims of ‘security’, so we should all be prepared to rebut.

Dr. Garrett, an expert in this field and occasional apologist, demonstrated that UEFI with Linux can brick hardware [1, 2, 3]. So much for security, eh? He is supporting it, sadly enough, based on very weak grounds. He should have antagonised it instead. Earlier this week he posted an update on the bricking issue:

Meanwhile, Samsung got back to us and let us know that their systems didn’t require more than 5KB of nvram space to be available, which meant we could get rid of the 50% value and replace it with 5KB. The hope was that any system that booted with only 5KB of space available in nvram would trigger a garbage collection run. Unfortunately, it turned out that that wasn’t true – some systems will only trigger garbage collection if the OS actually makes an attempt to write a variable that won’t otherwise fit.

So the search for a solution goes on under the false pretences that buggy, experimental UEFI sometimes adds something for GNU/Linux users to enjoy. The practical benefits of UEFI are very minor to ordinary desktop users. UEFI is good for two monopolies: the Intel/x86 monopoly and the Windows monopoly.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. More of Bill Gates' Investments in GMO and Mass Indoctrination Under the Disguise of 'Donations'

    Microsoft's arrogant and famously corrupt co-founder is taken to task by those whom he is trying to bamboozle for monopoly, unlimited cross-generational power, and never-ending profit without risk



  2. Home Depot Confirmed a Victim of Microsoft's Bad Security, Microsoft Lays Off Security-Related Staff

    News reports circulate showing that Home Depot was knowingly careless with its Windows dependency while Microsoft lays off staff focused on security



  3. European Patent Office/Organisation - Suspicion of Improper Collusion Between EPO President and Chairman of the Administrative Council: Part III

    A preliminary look at Battistelli's reign and how regulatory powers got abolished, leaving the EPO reckless and largely unaccountable



  4. Links 21/9/2014: xorg-server 1.16.1, Linux Kernel 3.16.3

    Links for the day



  5. Links 20/9/2014: GNOME 3.13.92, Android L

    Links for the day



  6. Scanning Patent Troll Implodes; Is the Podcasting Patent Troll Next?

    MPHJ loses and Personal Audio LLC perhaps wins for the last time since software patents are quickly losing legitimacy in the United States



  7. If CAFC is Not Above the Law, Then it Should be Shut Down Now

    A long series of abuses in CAFC may as well suggest that this court has become broken beyond repair



  8. The Latest From Microsoft Patent Trolls and Patent Partners

    Microsoft-linked and Linux-hostile trolls continue their relentless attacks (albeit with little or no success) while patents as a weapon lose their teeth owing to a Supreme Court ruling



  9. Microsoft Proves That Its Massive Layoffs Are Not About Nokia

    Microsoft is laying off a lot of employees who have nothing at all to do with Nokia



  10. Links 19/9/2014: Another Red Hat Acquisition, Netflix Dumps Microsoft Silverlight and Brings DRM to WWW

    Links for the day



  11. Links 18/9/2014: Windows Copying GNU/Linux, Germany Moves to Security

    Links for the day



  12. Web Site 'Patent Progress' Now Officially 'Powered by CCIA' (FRAND Proponent, Microsoft Front)

    After talking a job at CCIA, "Patent Progress" and its chief author should be treated as dubious on real patent progress



  13. Articles About the Death of Software Patents in the United States

    Recent coverage of software patents and their demise in their country of origin, where even proponents of software patents are giving up



  14. The Death of Software Patents is Already Killing Some Major Patent Trolls

    VirnetX seems to be the latest victim of the demise of software patents in the United States



  15. More Microsoft Layoffs

    More Microsoft layoffs go ahead as the company is unable to compete



  16. ODF on the Rise

    Milestones for OpenDocument Format (ODF) and the launch of FixMyDocuments



  17. Links 17/9/2014: CoreOS, ChromeOS, and systemd

    Links for the day



  18. Italy is Cracking Down on Microsoft's Monopoly Abuse While Gradually Moving to GNU/Linux

    Italy is not only moving to Free/Open Source software but also to GNU/Linux while at the same time barring Microsoft from forcibly tying Windows to new PCs



  19. OpenSUSE's 'Assurances' Are Classic MBA School Hogwash

    OpenSUSE is not part of any commitment, except for SUSE's; the impact of the Novell/SUSE acquisition casts uncertainty on the project's future



  20. Links 16/9/2014: Firefox OS Smartphones in Bangladesh, “Treasure Map” of the Internet

    Links for the day



  21. The United Kingdom Should Dump Microsoft For the Sake of National Security

    The UK has issues of Microsoft dependency and Windows viruses; its migration to Free software and GNU/Linux is not fast enough to guard its autonomy in the age of digital imperialism



  22. CBS Hires Even More Microsoft Staff to Cover Microsoft Matters

    CBS continues to be infested with Microsoft staff past and present (this time Dave Johnson) and the bias in output is quite revealing



  23. Microsoft Has Just Killed Minecraft for GNU/Linux and the Possibility of Free/Open Source Releases

    Persson sells out to Microsoft and lets the abusive monopolist destroy the popular cross-platform game that a community has been built around



  24. Another Reason to Boycott Intel UEFI

    More anti-competitive aspects are revealed inside UEFI, which helps merginalise GNU/Linux



  25. Quick Mention: Novell and SUSE Passed to Microsoft's 'Partner of the Year', Microsoft Focus

    Novell is changing hands again, and falling into the hands of even more Microsoft-friendly actors



  26. Links 16/9/2014: Linux 3.17 RC5, KDE Frameworks 5.2.0

    Links for the day



  27. Željko Topić, Benoît Battistelli, and the European Patent Office (EPO): Part II

    Part II of our look into the EPO appointment of Željko Topić and other matters showing the dubious integrity of the EPO



  28. Links 14/9/2014: Android-based Watches Earn Optimism

    Links for the day



  29. Links 14/9/2014: Eucalyptus Devoured

    Links for the day



  30. Links 11/9/2014: Linux Toilet Project, Linux-Based Wheelchair Project

    Links for the day


CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts