Linux Foundation Secure Boot SystemFound a convenient way to install and boot Linux on machines with UEFI technology.

Independent foundation Linux Foundation has officially released a software solution for the installation of almost any Linux-distributions on the machine originally designed for Windows 8.

In particular, the new solution allows you to run Linux-based computers, where, instead of the traditional BIOS boot interface technology is used UEFI (Unified Extensible Firmware Interface – Unified Extensible Firmware Interface).

Package LF SBS (Linux Foundation Secure Boot System) addresses the fundamental problem of the many flavors of Linux, offering a way to install the new equipment that is running UEFI-firmware. The fact that the agreement of manufacturers, UEFI includes a secure boot mechanism called «Secure Boot». Led the creation of the new boot James Bottomley, a member of the Technical Board of the fund Linux Foundation.

As a replacement for long-outdated technology BIOS, UEFI firmware is designed to protect computers from malware by scanning special key before the operating system or any additional hardware, including graphics adapters. UEFI mechanism is the first link in a chain of trust from the “iron” and up to the application to help fight attempts to establish a false, malicious software.

Microsoft has ordered the manufacturers to use UEFI on all new machines with Windows 8. Although OEM-producers have the right to prompt the user to disable UEFI, to ensure the installation of other operating systems, including Linux-community are of the opinion that many of these manufacturers simply will not offer this possibility because of the extra costs. As a result, many new PCs will not be able to install the OS without a special key.

Recent versions of leading Linux distributions already include a variety of ready-made solutions to work with UEFI. These products include Ubuntu 12.10 and Fedora 18. For many smaller projects UEFI presence could become an insurmountable obstacle. New boot from Linux Foundation has a special hash code, certified by Microsoft, as well as offering a ready infrastructure to boot the default kernel Linux.

This is not the first attempt at Linux-community work around the limitations UEFI. Safety Specialist Matthew Garrett has released its own “patch” in the last year. This “patch” («shim») is significantly different from a full boot, it does not require a signature on key third-party suppliers. On the other hand, the method of Garrett’s much harder to handle. Now Garrett and Bottomley actively collaborating to integrate its technology into a single boot loader for Linux.

Interestingly, the UEFI technology has become a serious challenge for the operating system Windows, for which you created. For example, Garrett has found that some Samsung laptops preloaded with Windows 8 can completely stop working due to defects in original firmware Samsung, storage-related system failures on the internal memory of UEFI.

Related link:

http://www.softwaregold.net/softreview/2013/02/linux-foundation-uefi-secure-boot/

Advertisements