LF: There's Less Concern About ARM UEFI SecureBoot

Written by Michael Larabel in Linux Kernel on 27 November 2012 at 10:12 AM EST. 8 Comments
LINUX KERNEL
James Bottomley wrote a new blog post this morning about why the Linux Foundation really isn't concerned about UEFI SecureBoot on ARM hardware (smart-phones, tablets, etc) compared to the work they are doing on x86 PCs with UEFI SecureBoot support for Linux.

Last month the Linux Foundation announced their UEFI SecureBoot plans for dealing with Microsoft Windows 8 PCs. Their plans basically equated to legally obtaining a Microsoft key and signing a small pre-bootloader that in turn could chain load a predesignated boot loader that would in turn boot Linux or any other operating system without having to deal with the SecureBoot mess. The signed pre-bootloader will be available from the Linux Foundation web-site for anyone to use along with the source-code, albeit not their private key. The foundation is still working to obtain a SecureBoot key and their SecureBoot focus has just been for x86 hardware.

With Linux users wondering why the Linux Foundation isn't diving into some SecureBoot solution for ARM, James Bottomley wrote a lengthy explanation. The reasons that ARM SecureBoot isn't being actively pursued include:

- Windows dominates on desktop PCs where as in the ARM space Apple and Android are dominating. Nearly all desktop PCs from major vendors are Windows 8 certified -- thus the SecureBoot mandate -- where as right now in the ARM mobile/embedded space there isn't the Redmond dominance.

- All Apple iPhones and iPads -- most of the devices out there -- are already locked down. If the Linux Foundation were to attack Microsoft in this space, they would also need to attack Apple and there's very little chance Apple would become more open with their devices.

- A lot of Android devices are locked down too. However, at least in recent times, more Android vendors have become more open about allowing their devices to be locked / rooted in order to create a thriving mod community.

- Regardless of how much the phone/tablet vendor tries to lock down and secure a device, generally within a few weeks of any new product launch, the modding community achieves success in rooting the device.

Bottomley ends today's blog post with "if the Surface (or Windows phone) hardware is really enticing, I’ve no doubt we’ll see a Linux variant running on it in the near future regardless of UEFI secure boot." His post can be read here.
8 Comments
Related News
DRM Buddy & AMDGPU Wired Up For Clear Page Tracking In Linux 6.10
Linux 6.9-rc6 Released With This Kernel Looking "Pretty Normal"
Linux 6.9-rc5 Released: The Diffstat "Looks A Bit Wonky" But Not Bad
Linux 6.9-rc5 Picking Up Fixes For Intel FRED, BHI & GFNI/VAES Checks
Linux 6.10 Preps A Kernel Panic Screen - Sort Of A "Blue Screen of Death"
Linus Torvalds Injects Tabs To Thwart Kconfig Parsers Not Correctly Handling Them
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
systemd Rolling Out "run0" As sudo Alternative
Linux Mint Looks To Fork More GNOME Software, Make XApp More Independent
Microsoft Updates Cascadia Code: Its Open-Source Font For Developers
Microsoft Open-Sources MS-DOS 4.0 Under MIT License
Systemd 256-rc1 Brings A Huge Number Of New Features
NVIDIA Developer Opens Feature Pull Request For Open-Source NVK Driver
Rust-Based Coreutils 0.0.26 Increases Compatibility With GNU Coreutils
AMD Enabling "Fast CPPC" For Even Greater Linux Performance & Power Efficiency On Some CPUs