Some additional information. Dasharo: https://docs.dasharo.com/
Heads firmware ensures the system’s firmware and boot integrity at all stages. It does this with measured boot technology. Measured boot provides cryptographic hashes for each boot component. This covers the main SPI (BIOS) firmware itself and all of the important boot files in the /boot directory, including the disk encryption setup files, the kernel, the initrd file and the GRUB configuration. The hashes are securely stored and attested in the independent TPM hardware. The outcome is a reliable boot setup, while you (instead of a big tech giant) are fully controlling the keys. Actually, Heads firmware creates a chain of trust from the beginning of the boot process till the end. Without the measurement and attestation of the entire boot process, assurance against potential tampering would remain uncertain. This is why it is much better than Secure Boot technology. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2093192 Title: I am using seccure Dasharo BIOS, but Ubuntu settings is warning me about insecurity To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnome-control-center/+bug/2093192/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
