Hacker News new | ask | show | jobs
by Foxboron 742 days ago
> Also most (all?) UEFI systems are not locked to Windows and allow customizing the keystore via the firmware console interface anyhow.

All of them.

The Secured Core machines still allows you to reset Secure Boot into user mode as mandated by the spec.
1 comments
josephcsible 742 days ago
Isn't this only true of x86 ones, not ARM ones?
link
Foxboron 741 days ago
If ARM implements the UEFI specification then there are escape hatches to enroll your own PKI.

I don't own ARM machines with UEFI so I have no clue.

link