This seems misguided - win8 certification actually requires that the end user can disable secure boot and upload/remove keys.

WRONG

Given the condition you are _not_ on ARM.
Read up the facts and don't be a sheep of the system!

SecureBoot is stealing the users' freedom and should be abandoned asap; the excuse it has been introduced for is a shame to all computer users and the loose conditions for x86_64 are only there to abandon initial criticism.

Microsoft should have every right to secure their systems as they see fit. This endless whining over SecureBoot is getting ridiculous.

What the hell?

I don't know if you even understand the problem: These are not Microsoft's systems, these are the end-users' systems, and the users are the _only_ ones deciding which operating systems they install on it.
Moreover, are you suffering from the Stockholm Syndrome or why are you so defensive of Microsoft? I don't get it.

They will just ignore it

And obviously, they will just ignore it...

ARM secure boot is something different than x86_64 EUFI Secure Boot.

there are two things you are overlooking:

1) you can choose not to buy ARM hardware that has Secure Boot enabled (there are several vendors of unlocked ARM hardware around, at very low prices). A lot of these devices can also be rooted or jailbroken. On top of that, consumer ARM hardware has almost exclusively been "bootlocked" since forever, and secure boot doesn't even change that.
2) for x86_64 hardware, you actually have much less competition when it comes to buying from alternative vendors, as almost the entire market is win8.

So, it isn't as simple as you claim it to be. I don't think that my employer would be OK with selling hardware that can only run a single proprietary OS - remember, Intel supports Linux with an enormous group of developers. I don't think that Intel would sanction a degraded security under Linux, either. I'd personally love to buy a system pre-installed with e.g. RedHat that has only RedHat keys, and no microsoft keys, BTW. UEFI Secure Boot actually makes that possible.

DISCLAIMER: I work for Intel (insert standard corporate disclaimer). I personally like EUFI secure boot, because it allows me to secure my system against people trying to break into my system.

Microsoft console, yes.

Personal computer - NO.

There two things that you are overlooking.

1) Its personal computer. Personal computer means it is illegal to establish monopoly or vendor lock-in.
2) UEFI secure boot does NOT allow YOU to secure YOUR system against people trying to break in YOUR system.
UEFI secure boot allows PEOPLE to secure THEIR system from YOU, the buyer and user.

Some ideas

Thanks for your statement.
The last time I checked, I saw Intel actually being part of the SecureBoot-interest-group, but I may be wrong.
I may choose not to buy ARM hardware with enabled SecureBoot, but what kind of agenda is this? There is a market to lose, a big potential to bring GNU/Linux to the masses and fighting what we called a monopoly a few years ago before everyone seemingly forgot what that is.
SecureBoot is not securing your system, it is just luring you into a state of being locked to a certain operating system, as only a minority of attacks are focused on actually manipulating the bootloader or MBR.

What does this lead to?
Using Windows 8 imposes all risks of the last years. You will be target of all major virus-authors and be forced to use anti-virus software, because they may have "secured" the booting-process, but they did not get around fixing the actual operating system properly!
We had this same discussion years ago with IE and fortunately, the fight was won.
We have this discussion today regarding an even more sensitive topic (switching to FF is easier than unlocking your hardware or even buying new one in case of ARM) and I am afraid most users might not even care.

There have been boot viruses for decades. Secureboot isnt going to fix that. The -only- thing that it effectively did was grow a hacker community to target it. Before Secureboot it was a small purpose focused community, but now it is a larger and growing community targeting specifically Secureboot. The risk is greater now than it has ever been -because- of it.

You know that old saying about the bullseye.... The point of the game is to hit the bullseye.... The game is about notoriety and Secureboot is an awful lucrative bullseye.