Fedora Linux moves forward with UEFI secure boot plans

Two alternative routes make up Fedora's approach to getting around Windows 8's upcoming restrictions.

By Katherine Noyes, PC World |  Software, Fedora, Linux

Windows 8's Secure Boot technology has been a hot topic this summer, causing no end of discussion and debate among the various Linux distributions, which are struggling to figure out the best approach for getting around it.

Not long ago we saw responses from both Fedora Linux and Ubuntu Linux--followed soon afterwards by considerable concern on the part of the Free Software Foundation and a plan of action on the part of Linux developers themselves.

The latest news? The Fedora project on Monday voted to move forward with its plan, meaning that its upcoming Fedora 18 will support the Secure Boot technology enabled in the Unified Extensible Firmware Interface (UEFI) in Microsoft's forthcoming Windows 8.

'They Will Validate the Next Stage'

For those who missed it, we've already seen that part of Fedora's scheme involves paying $99 to Verisign for unlimited use of Microsoft signing services. That, in turn, will allow Fedora's first stage boot loader, or shim, to be signed with a Microsoft key.

Under a second, alternative part of the scheme, a site will create their own keys and deploy them in system firmware, and will do their own signing of binaries with it, the project explains.

Either way, shim, Grub2, and the kernel will detect that they are started in what UEFI describes as 'user mode' with Secure Boot enabled, and upon detecting this they will validate the next stage with a Fedora-specific cryptographic public key before starting it, the Fedora team explains.


Originally published on PC World |  Click here to read the original story.
Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+

Answers - Powered by ITworld

Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+

Ask a Question
randomness