Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 15 Apr 2015 04:22:53 +0000 (UTC)
From:      Benjamin Kaduk <bjk@FreeBSD.org>
To:        doc-committers@freebsd.org, svn-doc-all@freebsd.org, svn-doc-head@freebsd.org
Subject:   svn commit: r46557 - head/en_US.ISO8859-1/htdocs/news/status
Message-ID:  <201504150422.t3F4MrHO013509@svn.freebsd.org>

next in thread | raw e-mail | index | archive | help
Author: bjk
Date: Wed Apr 15 04:22:53 2015
New Revision: 46557
URL: https://svnweb.freebsd.org/changeset/doc/46557

Log:
  Add Secure Boot report
  
  Approved by:	hrs (mentor, implicit)

Modified:
  head/en_US.ISO8859-1/htdocs/news/status/report-2015-01-2015-03.xml

Modified: head/en_US.ISO8859-1/htdocs/news/status/report-2015-01-2015-03.xml
==============================================================================
--- head/en_US.ISO8859-1/htdocs/news/status/report-2015-01-2015-03.xml	Wed Apr 15 04:12:19 2015	(r46556)
+++ head/en_US.ISO8859-1/htdocs/news/status/report-2015-01-2015-03.xml	Wed Apr 15 04:22:53 2015	(r46557)
@@ -2126,4 +2126,53 @@ WITHOUT_FORTH=y</pre>
 	two were taken in for safe-keeping.</p>
     </body>
   </project>
+
+  <project cat='proj'>
+    <title>Secure Boot</title>
+
+    <contact>
+      <person>
+	<name>
+	  <given>Edward Tomasz</given>
+	  <common>Napiera&#322;a</common>
+	</name>
+	<email>trasz@FreeBSD.org</email>
+      </person>
+    </contact>
+
+    <links>
+      <url href="https://wiki.freebsd.org/SecureBoot" />
+    </links>
+
+    <body>
+      <p>UEFI Secure Boot is a mechanism that requires boot
+	drivers and operating system loaders to be cryptographically
+	signed by an authorized key.  It will refuse to execute any
+	software that is not correctly signed, and is intended to secure
+	boot drivers and operating system loaders from malicious
+	tampering or replacement.</p>
+
+      <p>The utility to add Authenticode signatures to EFI files,
+	uefisign(8), was committed to 11-CURRENT and will ship in
+	10.2-RELEASE.  Ports for other open source utilities were added
+	to the Ports Collection, as <tt>sysutils/pesign</tt>,
+	<tt>sysutils/sbsigntool</tt>, and <tt>sysutils/shim</tt>.  There
+	is a prototype patch that makes boot1 use the Secure Boot shim, and
+	modifies the shim to provide the functionality necessary
+	for a successful bootstrap.</p>
+    </body>
+
+    <sponsor>The &os; Foundation</sponsor>
+
+    <help>
+      <task>
+	<p>Finalize the shim API extension and get it accepted
+	  upstream.</p>
+      </task>
+
+      <task>
+	<p>Commit boot1 changes.</p>
+      </task>
+    </help>
+  </project>
 </report>



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201504150422.t3F4MrHO013509>