[Cialug] Restricted boot a very real possibility

Matthew Nuzum newz at bearfruit.org
Tue Oct 18 11:38:54 CDT 2011


I often find the FSF to be a bit alarmist, but this is a very real concern:

http://www.fsf.org/campaigns/secure-boot-vs-restricted-boot/

Will your computer's "Secure Boot" turn out to be "Restricted Boot"?
by Matt Lee <http://www.fsf.org/author/mattl> — last modified October 17,
2011 14:54

 *Please sign our statement to show your
support!<http://www.fsf.org/campaigns/secure-boot-vs-restricted-boot/statement>
*

Microsoft has announced that if computer makers wish to distribute machines
with the Windows 8 compatibility logo, they will have to implement a measure
called "Secure Boot." However, it is currently up for grabs whether this
technology will live up to its name, or will instead earn the name
Restricted Boot.

When done correctly, "Secure Boot" is designed to protect against malware by
preventing computers from loading unauthorized binary programs when booting.
In practice, this means that computers implementing it won't boot
unauthorized operating systems -- including initially authorized systems
that have been modified without being re-approved.

This could be a feature deserving of the name, as long as the *user* is able
to authorize the programs she wants to use, so she can run free software
written and modified by herself or people she trusts. However, we are
concerned that Microsoft and hardware manufacturers will implement these
boot restrictions in a way that will prevent users from booting anything
other than Windows. In this case, a better name for the technology might be
Restricted Boot, since such a requirement would be a disastrous restriction
on computer users and not a security feature at all.
... read more <http://www.fsf.org/campaigns/secure-boot-vs-restricted-boot/>

-- 
Matthew Nuzum
newz2000 on freenode, skype, linkedin and twitter

♫ You're never fully dressed without a smile! ♫
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cialug.org/pipermail/cialug/attachments/20111018/a559dbce/attachment.html>


More information about the Cialug mailing list