EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

06.06.13

UEFI ‘Secure’ Boot is Not About Security, Insyde Software’s Business Model is Misguided and Dangerous

Posted in GNU/Linux, Kernel, Security at 9:10 am by Dr. Roy Schestowitz

Corporate insecurity for Insyde Software, corporate security for Microsoft

UEFI

Summary: Promotion of bad ideas by Insyde Software merits another discussion about what UEFI actually means to ordinary GNU/Linux users

The main problem with UEFI is its effect on freedom. It’s not just about restricted boot but also patents and other issues covered in the criticism section in Wikipedia.

A new press release from Taiwan describes UEFI as a security mechanism, but this is utter fiction. Last month I spoke for over an hour with the president of the UEFI Forum, covering in length the aspect of security. He too was led to agreeing with me that security is hardly improved by UEFI, which can have its barriers bypassed and ignored. The press release says something like this:

Insyde Software, a leading provider of Unified Extensible Firmware Interface (UEFI) BIOS, today announced the availability of new UEFI security features including Secure Boot and secure firmware update for leading Linux distributions.

No, thanks. Linux does not need UEFI for security. Even Torvalds rejects the 'security' claim (he dislikes ‘secure’ boot in general [1, 2]). So the above is a marketing gimmick, that’s all. Insyde Software will boost flawed claims of ‘security’, so we should all be prepared to rebut.

Dr. Garrett, an expert in this field and occasional apologist, demonstrated that UEFI with Linux can brick hardware [1, 2, 3]. So much for security, eh? He is supporting it, sadly enough, based on very weak grounds. He should have antagonised it instead. Earlier this week he posted an update on the bricking issue:

Meanwhile, Samsung got back to us and let us know that their systems didn’t require more than 5KB of nvram space to be available, which meant we could get rid of the 50% value and replace it with 5KB. The hope was that any system that booted with only 5KB of space available in nvram would trigger a garbage collection run. Unfortunately, it turned out that that wasn’t true – some systems will only trigger garbage collection if the OS actually makes an attempt to write a variable that won’t otherwise fit.

So the search for a solution goes on under the false pretences that buggy, experimental UEFI sometimes adds something for GNU/Linux users to enjoy. The practical benefits of UEFI are very minor to ordinary desktop users. UEFI is good for two monopolies: the Intel/x86 monopoly and the Windows monopoly.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New

  1. (GNU) Linux on the Tablet in 2013

    Celebrating the quick growth of Android on the tablet, which in turn facilitates GNU/Linux on more tablets

  2. Google is Gradually Eating Away Microsoft's Desktop Monopoly

    How Chrome OS and other endeavors from Google weaken Microsoft's common carrier and even contribute to Microsoft exodus

  3. Microsoft Cannot Compete Fairly, May be Bricking Its Own Systems Again

    Microsoft is proving once again that no sane OEM should have pre-installed Windows; a little revisionism and spin from Mary Jo Foley (Microsoft's Mouth) is rebutted

  4. Yes, Chrome OS is a GNU/Linux Distribution and Google is Still Worth Supporting

    Distributions of GNU/Linux need not conform to people's expectation of freedom and control, so even some restrictive systems like Chrome OS are in fact GNU/Linux

  5. Most Famous Derivative of Debian Could Become SteamOS, Not Ubuntu

    Emphasis on the fact that SteamOS is basically a derivative of Debian GNU/Linux

  6. Fedora 20 is Out, Fedora 21 Already in the Planning

    The community version of Red Hat is out once again, a week ahead of Christmas and approximately 10 years after it all began

  7. Links 19/12/2013: Recent Screenshots Galleries

    Links for the day

  8. Copyright Infringement/Sharing is the New 'Terrorism', No Laws Required for Authorities to Take Extreme (and Sometimes Illegal) Action



  9. More Calls to Boycott Elsevier

    Fresh attacks on Open Access by Elsevier trigger new calls for a boycott of everything Elsevier offers

  10. New Examples of Censorship in West Europe, Facebook, Google, Saudi Arabia, China, Japan, and North America

    Links for the day

  11. New Threats of 'Gentle' Internet Censorship as Even Regulators Speak for Corporations



  12. Links 18/12/2013: KDE News

    Links for the day

  13. Links 18/12/2013: GNOME Desktop News

    Links for the day

  14. Governments Increasingly Leaning Towards Free Software in the Wake of NSA Scandals and Economic Pressures

    New examples of governments' embrace of Free/libre software, despite bribes from software oligarchs like Microsoft, IBM, and Oracle

  15. Another 2 Reasons to Boycott BT: Censorship by Default, Back Doors for the US

    BT finds itself embroiled in two more scandals, one relating to Internet censorship and another relating to back doors in people's home networks (in the UK)

  16. The Positive Power of Ubuntu GNU/Linux Seen in South Korea

    South Korea is seriously considering Ubuntu GNU/Linux as a nationally-approved option now that Windows XP gets back doors (not accessible only to the NSA and its affiliates)

  17. 'Retired' Microsoft Staff and the Takeover of the Government

    The DelBene couple (Microsoft executives) continues to take positions of power inside the US government while Bill Gates, a convicted monopolist, befriends key people in the Europe-wide government

  18. Links 16/12/2013: Applications and Instructionals

    Links for the day

  19. Links 16/12/2013: Valve, Steam, SteamOS, and Other News About Games

    Links for the day

  20. NSA Roundup: Latest News in a Nutshell

    December news about the NSA and its international partners

  21. NSA Confirms Remote Computer Bricking by BIOS (or UEFI) as a Real Strategy

    NSA officials say that bricking a large number of PCs by tinkering with the boot process not just an imaginary plot

  22. Fee Shifting (or Patent Trolls Busting) Not the Solution to Patent Problem, Scope of Patenting the Real Issue

    orporations are still defining the problem with patents -- wrongly -- and then tackle the wrong problem so as to benefit themselves

  23. In Operating Systems Market, Microsoft is Going Nowhere Fast

    Analysis generally agrees that Microsoft is in serious trouble as Android continues to emerge as the de facto platform and not even zero-cost Windows will counter that

  24. Links 13/12/2013: Linux (Kernel) News

    Links for the day

  25. Links 12/12/2013: Screenshots

    Links for the day

  26. Links 12/12/2013: Applications and Instructionals

    Links for the day

  27. Avoid Activision, Support Valve

    GNU/Linux distribution SteamOS is officially out tomorrow and Activision turns out to be actively against GNU/Linux

  28. Beyond Trademarks, Intellectual Monopolies at Canonical Raise Questions

    How Canonical impedes dissemination of work that Ubuntu inherits from other projects, such as Debian and GNU

  29. Microsoft's Antitrust/Taxation Attempts Against Linux/Android in Europe Are Rapidly Falling Apart

    Microsoft's patent and antitrust strategy against Android/Linux (through Nokia) is not working out too well because of hypocrisy and obviousness

  30. LinuxDevices is Coming Back as Subdomain of LinuxGizmos

    QuinStreet agrees to license a decade of news stories from LinuxDevices for republication and long-term preservation

CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts