On 07/08/2017 12:16 PM, Max wrote:
Hello, How to check if BIOS require digital signatures on BIOS firmware updates?
IIRC, a firmware setup menu that has an 'anti-rollback' protection setting (to prevent earlier firmware versions from being accepted) should have signature verification.
As of 2012 the UEFI spec did not require this feature. I believe this has changed since then -- you can look for such a requirement at http://www.uefi.org/specifications .
You will probably get a more definitive answer for this type of question if you ask the Coreboot and Libreboot communities, as they regularly deal with such protection measures.
-- Chris Laprise, [email protected] https://twitter.com/ttaskett PGP: BEE2 20C5 356E 764A 73EB 4AB3 1DC4 D106 F07F 1886 -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/031665fa-4269-5dba-e7b1-ac23265d758b%40openmailbox.org. For more options, visit https://groups.google.com/d/optout.
