45bead3783
Story: 2011352 Task: 52387 Change-Id: I9823c73b173f407d471862a7d028bdfa8508a6ab Signed-off-by: Ngairangbam Mili <ngairangbam.mili@windriver.com>
26 lines
798 B
ReStructuredText
26 lines
798 B
ReStructuredText
|
|
.. zrf1552681385017
|
|
.. _overview-of-uefi-secure-boot:
|
|
|
|
============================
|
|
Overview of UEFI Secure Boot
|
|
============================
|
|
|
|
Secure Boot is an optional capability of |UEFI| firmware.
|
|
|
|
Secure Boot is a technology where the system firmware checks that the system
|
|
boot loader is signed with a cryptographic key authorized by a database
|
|
contained in the firmware or a security device.
|
|
|
|
|prod|'s implementation of Secure Boot also validates the signature of the
|
|
second-stage boot loader and the kernel.
|
|
|
|
|prod|'s public key, for programming in the hardware's Secure Boot database,
|
|
can be found in the |prod| ISO.
|
|
|
|
.. note::
|
|
|
|
Users installing |prod| |v_r10| must keep the old certificate in the BIOS and users must
|
|
add the new certificate before upgrading to the N+2 release.
|
|
|