1) Code First Process Update UEFI Board still need time. Current process is not changed yet. Suggestion is to prepare the content first in this working group.
2) New issue - Deprecate PKCS7 and use CMS - ( https://github.com/tianocore/edk2/issues/12561 ) PKCS7 was old thing. The new standard such as MLDSA uses CMS directly. PKCS7 verification path validated RSA content but failed ML-DSA-87 verification. CMS verifier can be compatible to PKCS7 verifier. But for compatibility, we can leave both in spec, and make them identical by typedef or #define. Doug mentioned that we may need to double check if we can migrate all text from PKCS7 to CMS directly, because there might be slight difference. *AR: Doug* to double confirm with Crypto Expert. 3) New issue - Image Database format V2: remove SignatureOwner and RevocationTime ( https://github.com/tianocore/edk2/issues/12574 ) Review https://github.com/vathpela/silver-doodle/compare/main...no-owner-guid Feedback: * Do not use DEPRECATER, because we need the current one in transition period. EDK2 will have to support both for a while. And UEFI CA needs to release both formats. * Add new one as EFI_VERT_V2_xxx_GUID. * Cannot say "Do not use this", Maybe say something like check ECIT, because ECIT will report the firmware capability on which ones are supported. * Need to update the Table 32.4 PE/COFF Certificates Types and UEFI Signature Database Certificate Types *AR: Peter* to update. 4) Notify other standard Working group. Jiewen has notified TCG PC Client WG and RedFish forum on the UEFI PQC update for Secure boot and ECIT table. Plan to notify again once our proposal is finalized. 5) Review old issue For AuditMode/DeployMode removal ( https://github.com/tianocore/edk2/issues/12525 ) Besides removal, we also need to review the existing text for SecureBoot Mode Transition. We may clarify some text as needed. For example, if we allow PK present with SecureBootMode OFF. *AR: Doug* to double check and add clarification. Thank you Yao, Jiewen -=-=-=-=-=-=-=-=-=-=-=- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#121951): https://edk2.groups.io/g/devel/message/121951 Mute This Topic: https://groups.io/mt/119307322/21656 Group Owner: [email protected] Unsubscribe: https://edk2.groups.io/g/devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
