> As you say, the closed source nature of most BIOSes makes complying
with these
> requirements nearly impossible for most organizations. The only
exceptions I
> can think of are big companies with connections to the IBVs (e.g. Intel,
> Microsoft) or the government/military. Something tells me none of them
will in
> any rush to talk to you though. :)

Good news vendors:

NIST SP80-147's 'golden image' doesn't need to be source-only. :-)

I got some clarification from NIST, I'll be doing a blog with some
updated info in a day or two.

Thanks again for the answer.
Lee
RSS: http://firmwaresecurity.com/feed

_______________________________________________
edk2-devel mailing list
[email protected]
https://lists.01.org/mailman/listinfo/edk2-devel

Reply via email to