When I wrote about TPM attestation via 2FA, I mentioned that you needed a bootloader that actually performed measurement. I've now written some patches for Shim and Grub that do so.The Shim code does a couple of things. The obvious one is to measure th...
↧
Matthew Garrett: Filling in the holes in Linux boot chain measurement, and the TPM measurement log
↧