> As you say, the closed source nature of most BIOSes makes complying with these > requirements nearly impossible for most organizations. The only exceptions I > can think of are big companies with connections to the IBVs (e.g. Intel, > Microsoft) or the government/military. Something tells me none of them will in > any rush to talk to you though. :)
Good news vendors: NIST SP80-147's 'golden image' doesn't need to be source-only. :-) I got some clarification from NIST, I'll be doing a blog with some updated info in a day or two. Thanks again for the answer. Lee RSS: http://firmwaresecurity.com/feed _______________________________________________ edk2-devel mailing list [email protected] https://lists.01.org/mailman/listinfo/edk2-devel

