[coreboot] Req: FOSS-restricting firmware hints
Timothy Pearson
tpearson at raptorengineeringinc.com
Wed Jul 8 22:48:08 CEST 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 07/08/2015 03:35 PM, Nico Rikken wrote:
> Dear ARM-netbook and Coreboot readers,
>
> In FSFE context we're looking for examples regarding firmware
> restrictions on modern computer hardware. This so that we can shed light
> on the difficult situation you are all too familiar with. Examples are:
>
> - Trusted Platform Module (TPM) chips
> - Secure Boot
> - Intel
> - Management Engine
> - Advanced Management Technology
> - Boot Guard
>
> It will be great if you can add some from the top of your head, ideally
> including some references. I'll be doing my own research as well, but
> your hints will greatly help this process.
>
> Kind regards,
> Nico Rikken
>
AMD's Platform Security Processor (PSP) is another example -- the x86
portion of the processor won't start unless the PSP says it's OK, and
the PSP firmware is signed such that it cannot be replaced with a free
software equivalent.
- --
Timothy Pearson
Raptor Engineering
+1 (415) 727-8645
http://www.raptorengineeringinc.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iQEcBAEBAgAGBQJVnYyGAAoJEK+E3vEXDOFbOVEH/j+qjA/YFO23my05VL1RS1Za
ZvKWopkCws3bYNqf3cd6g6z342tywJZ3LXA+9YAcCEWgMfbCYaLLycObHsTlK9Yy
yY+x98Fa7474E/SREkb+B7nRmQ8hwVawS0UmsLqYbkHnZmnUW8GnhSrp2B8ZZG3v
sNK2TVhJbxIcGuw7MF9AFqzJ/dFN1mk/NHIVagDArwQXXWRtt2h4l3M6e97F3Jhi
tio2VjPzPRvxHnB0qv0BnhtpTDn1yTafV1zCmZdv7qVPQHCWIsp2N7h9v5XwVtYO
3mfXcYUjjSyBJHNpAJjRbUcmaD1fCLAJw0NDRfFnJ9oelyMljAW/2ACdHtA90MU=
=djPw
-----END PGP SIGNATURE-----
More information about the coreboot
mailing list