Y
Hacker News
new
|
ask
|
show
|
jobs
by
timtadh
5384 days ago
"An OS with a Pkek matching that installed in the firmware may add additional keys to the whitelist."
Does this mean you can just add you own key and self sign any code you want?
1 comments
keeperofdakeys
5384 days ago
Presumably you have to sign a pkek key with the firmware key. Even then, you don't actually have full control of your OS's kernel, so it may not be easy to insert a key.
link