Next: Platform limitations, Previous: Internationalisation, Up: Top [Contents][Index]
| • Authentication and authorisation | Users and access control | |
| • Using GPG-style digital signatures | Booting digitally signed code | |
| • Using appended signatures | An alternative approach to booting digitally signed code | |
| • UEFI secure boot and shim | Booting digitally signed PE files | |
| • Secure Boot Advanced Targeting | Embedded information for generation number based revocation | |
| • Measured Boot | Measuring boot components | |
| • Lockdown | Lockdown when booting on a secure setup | |
| • TPM2 key protector | Managing disk key with TPM2 key protector | |
| • Signing certificate and hash files | Certificate and hash file signing | |
| • Signing GRUB itself | Ensuring the integrity of the GRUB core image | |
| • Hardening | Configuration and customization to maximize security |