|
|
|
|
|
|
by zzzcpan
2882 days ago
|
|
|
Booting into linux from usb and wiping your disk in 3 minutes is not a real threat. It's not even a hypothetical threat. Why not just steal the thing instead or physically destroy it if you want to wipe the disk for some reason? And what reason would that even be, why would anyone want to wipe the disk given physical access? As losing data is something we already expect from mere hardware failures, software failures, operational mistakes, etc., no attackers necessary. So, no, the whole secure boot thing is just bullshit security theater and more lock in. |
|
|
> So, no, the whole secure boot thing is just bullshit security theater and more lock in.
Only if you're only thinking about laptops, desktops, maybe phones and tablets. There are lots of types of machines out there physically exposed to users whom the machine-owners trust to varying degrees, ranging from "not at all" on up.
Think UPS package scanners, HVAC systems, various control systems in everything from warehouses to prisons, sensors and signage controls...
Now, Secure Boot doesn't address anywhere near anything close to "sufficient" in any of those environments, but it is one component of raising the costs of attacking them to a point to make the systems economically viable, or at least apparently so.