July 25, 2012, 1:31 PM — Windows 8's Secure Boot technology has been a hot topic this summer, causing no end of discussion and debate among the various Linux distributions, which are struggling to figure out the best approach for getting around it.
Not long ago we saw responses from both Fedora Linux and Ubuntu Linux--followed soon afterwards by considerable concern on the part of the Free Software Foundation and a plan of action on the part of Linux developers themselves.
The latest news? The Fedora project on Monday voted to move forward with its plan, meaning that its upcoming Fedora 18 will support the Secure Boot technology enabled in the Unified Extensible Firmware Interface (UEFI) in Microsoft's forthcoming Windows 8.
'They Will Validate the Next Stage'
For those who missed it, we've already seen that part of Fedora's scheme involves paying $99 to Verisign for unlimited use of Microsoft signing services. That, in turn, will allow Fedora's first stage boot loader, or shim, to be signed with a Microsoft key.
Under a second, alternative part of the scheme, a site will create their own keys and deploy them in system firmware, and will do their own signing of binaries with it, the project explains.
Either way, shim, Grub2, and the kernel will detect that they are started in what UEFI describes as 'user mode' with Secure Boot enabled, and upon detecting this they will validate the next stage with a Fedora-specific cryptographic public key before starting it, the Fedora team explains.