Pete Batard

Yeah, I think UEFI `LoadImage()`/`StartImage()`, which is what you'd call to chain load the UEFI bootloader, are set to validate the loaded image for Secure Boot and not launch it...

> the main point of Secure Boot is to allow TPM to validate the running system before releasing stored keys, isn't it? No. The main point of Secure Boot is...

TPM encryption has historically been independent of Secure Boot. You were able to use TPM for disk encryption long before Secure Boot, and rightfully so, since the process of storing...

By the way, since I do want to bring that message home for people who might be tempted to place a bit too much trust in TPMs, disk encryption and...

I'm afraid I'm very busy with other projects, so I haven't had a chance. I would also like to point out that I reported the issue as a general remark...

> Unsigned bootloader Linux ISOs or ISOs without UEFI support does not boot with Secure Boot enabled. This is definitely what you want. When Secure Boot is enabled, BIOS boot...

@ValdikSS, I'm not seeing much being debated, when the link you point to appears to indicate that pretty much everybody is in agreement that loading unsigned kernels from GRUB, in...

@ValdikSS, I'm afraid I am fairly busy right now and, technically for me, investing time on this can be seen as going towards helping a "competing" product (since I am...

> Now Rufus has achieved support for secure boot as now NTFS:UEFI Driver is signed for secure boot by Microsoft. Yes, I finally managed to get [UEFI:NTFS](https://github.com/pbatard/uefi-ntfs) Secure Boot signed...

It's a bit saddening to see that this issue has been opened for 4 years, still without any sign of an upcoming resolution. I do understand that validating a plugin,...