Secure Boot

GPTKB entity

Statements (51)
Predicate Object
gptkbp:instanceOf computer security technology
gptkbp:alternativeTo gptkb:Legacy_BIOS_boot
gptkbp:canBe firmware settings
gptkbp:canBeBypassedBy exploiting firmware vulnerabilities
gptkbp:canBeDisabled yes
gptkbp:canBeManagedBy gptkb:OEM
system administrator
end user (in some cases)
gptkbp:category gptkb:UEFI
Boot process
Computer security
Firmware security
gptkbp:compatibleWith gptkb:Legacy_BIOS
gptkbp:controversy Linux compatibility
third-party OS installation
gptkbp:criticizedFor potential to restrict user freedom
gptkbp:documentedIn UEFI specification
gptkbp:enables chain of trust at boot
https://www.w3.org/2000/01/rdf-schema#label Secure Boot
gptkbp:introduced gptkb:UEFI_Forum
gptkbp:introducedIn gptkb:UEFI_2.3.1_specification
gptkbp:partOf UEFI specification
gptkbp:prevention bootkit malware
rootkit malware
gptkbp:purpose prevent unauthorized code from running during system boot
gptkbp:relatedTo gptkb:Microsoft_Secure_Boot_Key
gptkb:Trusted_Boot
gptkb:Measured_Boot
TPM
gptkbp:requires public key infrastructure
UEFI firmware
digitally signed bootloaders
gptkbp:standardizedBy gptkb:UEFI_Forum
gptkbp:supportedBy gptkb:Red_Hat_Enterprise_Linux
gptkb:Windows_8
gptkb:macOS
gptkb:Debian
gptkb:Fedora
gptkb:Microsoft_Windows
gptkb:Ubuntu
gptkb:SUSE_Linux_Enterprise
some Linux distributions
gptkbp:usedBy gptkb:Windows_8
gptkb:macOS
gptkb:Linux_distributions
gptkbp:uses gptkb:Forbidden_Signature_Database_(dbx)
gptkb:Key_Exchange_Key_(KEK)
gptkb:Signature_Database_(db)
Platform Key (PK)
gptkbp:bfsParent gptkb:Trusted_Platform_Module
gptkbp:bfsLayer 5