> In SecureBoot, the only thing that is attested are the disk images. > There's no guarantees about the program once it is in-memory and > executing. What's being executed in-memory is the important thing.
Indeed, it's important to remember tht SecureBoot's name comes from the
fact that it's designed to securely boot (Microsoft) competitors off
the market.
Stefan
