UEFI Restricted Boot No Longer Valid for Security, Keys Leaked

Dr. Roy Schestowitz

2013-04-07 19:30:26 UTC
Modified: 2013-04-07 20:01:45 UTC

As much about security as multimedia DRM

Drip

Summary: Antitrust offences with UEFI restricted boot can no longer be defended as an act of enhancing security because keys are leaking

A Fedora developer was the first to embrace Microsoft's restricted boot, so Fedora was usually ahead of the curve when it comes to it and it shows.

Torvalds criticised Red Hat for complicity with Microsoft [1, 2] after he had slammed restricted boot as something that would not improve security. He was right. Keys were inevitably leaked, leaving UEFI restricted boot (which former Novell/SUSE developers too helped promote) in a position where it is only an antitrust issue and nothing to do with computer security, just protectionism. As one new article puts it, the "Linux Lawsuit Shines Uncomfortable Light on UEFI Standard" and a Restricted Boot proponent leads with this news about UEFI signing keys getting leaked:

A hardware vendor apparently had a copy of an AMI private key on a public FTP site. This is concerning, but it's not immediately obvious how dangerous this is for a few reasons. The first is that this is apparently the firmware signing key, not any of the Secure Boot keys. That means it can't be used to sign a UEFI executable or bootloader, so can't be used to sidestep Secure Boot directly. The second is that it's AMI's key, not a board vendor - we don't (yet) know if this key is used to sign any actual shipping firmware images, or whether it's effectively a reference key. And, thirdly, the code apparently dates from early 2012 - even if it was an actual signing key, it may have been replaced before any firmware based on this code shipped.

But there's still the worst case scenario that this key is used to sign most (or all) AMI-based vendor firmware. Can this be used to subvert Secure Boot? Plausibly. The attack would involve producing a new, signed firmware image with Secure Boot either disabled or with an additional key installed, and then to reflash that firmware. Firmware images are very board-specific, so unless you're engaging in a very targeted attack you either need a large repository of firmware for every board you want to attack, or you need to perform in-place modification.

Now we know that UEFI restrictions had nothing to do with security and eventually became just a competition barrier. Rather than cracking we are seeing leaking as the end of UEFI restricted boot's (or 'secure' boot's) reputation. ⬆

Gnome Foundation Inc is in Trouble: the agenda is set GAFAM and IBM rather than donors
SLAPP Censorship - Part 22 Out of 200: When You Complain People Impersonate You in IRC (But You Yourself Impersonate People in IRC and Lock Them Out of Their IRC Handles): We'll cover this with direct evidence some time soon
Links 25/03/2026: Nations Return to Russian Oil and Burning Wood: Links for the day
Gemini Links 25/03/2026: Resisting Authoritarianism and Why Slop Needs to Go Away: Links for the day
Fedora Maintainer-ship Using Slop (Mistakes) Would Make Fedora Less Reliable: It won't produce reliable code or stable systems one can rely upon
IBM's "Legacy Employees" (Experienced Workers, IBM Management Dubs Them 'Dinobabies'): This notion of "legacy employees" seems like something overlapping with "expensive" (well paid) staff, even if not entirely equivalent
EPO's "Current Industrial Actions Are Likely to Intensify Further.": There is another strike in 5 days
This Morning The Register MS Published Slop Promotion With the Term "AI" 15 Times In It. The Register MS Was (As Usual) Paid to Do This: This is not a serious publisher
SLAPP Censorship - Part 23 Out of 200: We Were Right All Along (for 2 Years) About Third Party Funding and Willingness to 'Break the Bank' in Pursuit of "Revenge": How much damage can a person do to oneself in pursuit of cover-up of legitimate technical concerns?
Links 25/03/2026: Airports Further Militarised, "Slopification and Its Discontents", Microsoft 'Open' 'Hey Hi' Shutting Things Down: Links for the day
Gemini Links 25/03/2026: Blogging Fright and Absolutely Useless 'Apps' Made by Slop Machines: Links for the day
Rise in Energy Prices Will Significantly Accelerate the Death of So-called "AI Companies": It should be noted that fake news about Microsoft OpenAI doubling workforce (mere words, not actions) can serve as a nice distraction from the death of Sora due to divestment
It's Always a Question of Trust: There's a widespread stigma of lawyers being manipulative and chronically dishonest
Solicitors Regulation Authority (SRA) Must More Carefully Investigate or Assess the Financial State of Law Firms in the UK: We'll cover this in depth in the future
GAFAM Mozilla Removes Theora Support, Now GNU Needs to Re-encode Videos: Mozilla used to mean something to Free software advocates
An Open Admission Profits Depend on Addiction: Proprietary software tends to be like this
IBM Americas President Ayman Antoun Comes to OpenText, Weeks Ahead the Mass Layoffs Begin: Is that what IBM will be good at?
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Tuesday, March 24, 2026: IRC logs for Tuesday, March 24, 2026
Gemini Links 24/03/2026: Junk Drawer Time Capsule and Building Outside Alire: Links for the day
Not Much LLM Slop About "Linux" Lately, It Only Ever Comes From the Same Few Sites: As long as only few such sites use LLM slop we can skip and avoid them
Links 24/03/2026: "Epic Lays Off Over 1000 Employees" and US in Financial Trouble According to the Fed: Links for the day
The "Media" Does Not Only 'Miss' Mass Layoffs: "The Treasury just declared the U.S. insolvent. The media missed it"
The Empty Suits of IBM Managers (NIH or "Nothing Invented Here"): IBM's management adopted the business model of parasites
2012: 'Secure' (Microsoft-Controlled) Boot Has Not (Yet) Been Made Obligatory. 2026: systemd Has Not Implemented Age Verification: should we stop calling "nazi" everyone we don't agree with?
More Threats (Including Physical Threats) Against Us Are a Dumb Move: It's like a "hit list" (targets list) and I shall keep the police duly informed
New Example of Pentagon in "Feminist" Clothing Inside Fake News of Publishers Paid to Promote Outsourcing to US ("Clown Computing") and American Slop: Google now pays money to promote Google as a friend of women
Hating Techrights is a Career: but is it good for civil society?
Dr. Stallman’s Work Will Never be Considered 'Mainstream' Because He Rejects and Works Against the So-called 'Mainstream': Try to be more like Stallman
The New Layoffs: 'Silent Layoffs', 'Secret Layoffs', 'Quiet Layoffs', 'Passive Layoffs' 'Stealth Layoffs', and Unannounced Layoffs Disguised as Return-to-Office (RTO Mandates): The US needs to revisit and fix the WARN Act
EPO "Cocaine Communication Manager" - Part IX - Cocaine Addicts in Charge of the EPO Attacking Families of EPO Staff: Things like being high-profile and being a serious drug addict aren't opposites
What Feminism in Science Means (Codes of Conduct Don't Tackle the Real Issues): Universality matters, more so in a project or community that's said to build the "universal operating system" (Debian)
SLAPP Censorship - Part 21 Out of 200: It's About Behaviour Online, Not How Much Money From Shadowy Third Parties Gets Spent on Lawyers and Two Barristers: 75+ KG of legal papers, 2 cases, 2 barristers (one hiding in the metadata) and maybe two law firms (also hiding in the metadata) against two modest people in Manchester seems disproportionate and vindicative
Links 24/03/2026: "Airports on ICE" and "Have You Paid Your “Intuit Tax”?": Links for the day
Gemini Links 24/03/2026: Slop Interview and Why Slop Makes Lousy Code: Links for the day
Richard Stallman to Give Public Talk This Thursday at the University of Bologna (Italy): Hardly the first time he speaks in Bologna
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Monday, March 23, 2026: IRC logs for Monday, March 23, 2026
Gemini Links 23/03/2026: "Mandatory" Bad Things and Dangers of Perfection Aspirations: Links for the day
SLAPP Censorship - Part 20 Out of 200: All Roads Lead to Rome and to GAFAM Funding: Now about 10% into this series
Last Week's EPO Strike Was the Biggest (Highest Participation Rate), Hours Ago General Assembly Discussed Next (Growing) Intensity of Strikes: Well done and well attended
Mass Layoffs at HashiCorp, IBM Hid Them: The media did not mention those layoffs
Microsoft Downgraded on Concerns (Lack of Growth) Amid Silent Layoffs in 2026: The press isn't functioning anymore
Links 23/03/2026: Gulf Water at Risk, Heatwave in Malaysia: Links for the day
Slop Means False, New Article by Cybershow: "We are living in a world that is rapidly divesting from reality."
Debianism election 2026 community poll created, everybody can vote: Reprinted with permission from Daniel Pocock
Links 23/03/2026: "Shocking Peter Thiel Antichrist Lectures", Robert Mueller Remembered: Links for the day
The Scandal Bigger Than IBM/Red Hat Layoffs is the de Facto "Media Blackout" About Those Layoffs: So we have a media crisis, aside from the economic crises
Gemini Links 23/03/2026: Geminispace/Elpher Enhancement and the Cerberus Cinco: Links for the day
Fear is Not a Legitimate Factor: Smart people know that trying to prevent moral people from doing the "Right Thing" will backfire
Fuel Autonomy and What It Teaches Us About Software Autonomy (or Software Freedom): Need we wait until a "software Pearl Harbor" or protect ourselves proactively by weaning ourselves off of GAFAMware?
Scheduled Maintenance This Coming Wednesday: Other than that, all is the same and we carry on as usual
Most Press Articles About IBM Are LLM Slop, Sometimes With Slop Images: IBM basically laid off almost 1,000 people last week [...] At the moment about 75% of the 'articles' we see about IBM (in recent days) are some kind of slop
Links 23/03/2026: Security Breaches, Energy Shortages, Another SRA Scandal, and Patents on Nature: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Sunday, March 22, 2026: IRC logs for Sunday, March 22, 2026

UEFI Restricted Boot No Longer Valid for Security, Keys Leaked

Recent Techrights' Posts