Statements (26)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:UEFI_security_feature
|
| gptkbp:contains |
gptkb:KEK
gptkb:dbx PK db |
| gptkbp:db |
stores allowed signatures
|
| gptkbp:dbx |
stores revoked signatures
|
| gptkbp:definedIn |
gptkb:UEFI_specification
|
| gptkbp:hasRole |
prevent unauthorized code execution at boot
|
| gptkbp:KEK |
stores Key Exchange Keys
|
| gptkbp:location |
gptkb:UEFI_NVRAM
|
| gptkbp:notableRelease |
firmware update
operating system tools |
| gptkbp:PK |
stores Platform Key
|
| gptkbp:purpose |
manage digital certificates and hashes for Secure Boot
|
| gptkbp:relatedTo |
gptkb:EFI_variables
gptkb:Linux_shim_bootloader gptkb:Microsoft_Secure_Boot |
| gptkbp:usedBy |
UEFI firmware
operating system boot process |
| gptkbp:usedFor |
controlling firmware trust chain
verifying bootloader signatures |
| gptkbp:usedIn |
gptkb:UEFI_Secure_Boot
|
| gptkbp:bfsParent |
gptkb:Forbidden_Signature_Database_(dbx)
|
| gptkbp:bfsLayer |
7
|
| https://www.w3.org/2000/01/rdf-schema#label |
UEFI key databases
|