UEFI SecureBoot is a feature even hobbyist kernel developers can take advantage of to secure their systems. This presentation will go through the process of properly signing a custom build Linux kernel with a user generated private key and also how to insert the matching public key into the proper BIOS key database. Properly using UEFI SecureBoot ensures that there is no rootkit or man-in-the-middle attack between the BIOS and the Linux boot loader.
Survey this Session