Poettering: Brave new trusted boot world Poettering: Brave new trusted boot world

Lennart Poettering has posted a detailed specification for a new approach to "trusted computing" systems.
Central to the proposed design is the concept of a Unified Kernel Image (UKI). These UKIs are the combination of a Linux kernel image, and initrd, a UEFI boot stub program (and further resources, see below) into one single UEFI PE file that can either be directly invoked by the UEFI firmware (which is useful in particular in some cloud/Confidential Computing environments) or through a boot loader (which is generally useful to implement support for multiple kernel versions, with interactive or automatic selection of image to boot into, potentially with automatic fallback management to increase robustness).

This work is evidently the first in a series that will come out of the newly formed Linux Userspace API Group.



from LWN.net https://ift.tt/fbjQi04

via IFTTT



Comments

Post a Comment

Popular posts from this blog

Intentional dark pattern by Coinbase or just terrible UI?

Intentional dark pattern by Coinbase or just terrible UI? 2 by jjeaff | 0 comments on Hacker News. I recently needed to check a past transfer to confirm that I was sending some crypto to the same wallet address. In the past, the last few transactions showed up on the "Pay" page. They have since renamed "Pay" to Transfers or something like that. They no longer show past transactions, so I went down a rabbit hole of searching through the app, couldn't find it, then had to google it and found a help page for Coinbase. There is a link in the article to coinbase.com/reports (I can find no way to get to it from the web app except by following the link from the help article.) Once there, you can select the date ranges you want and generate a transaction report in PDF or CSV and then you have to wait a bit while it generates the report for you to download. What kind of UI craziness is this? A user's transaction history is such a basic feature, I can't imagine c...
Read more