Security Vulnerability in Windows 8 Unified Extensible Firmware Interface (UEFI)
This is the first one discovered, I think.
Posted on September 24, 2012 at 1:09 PM
" Secure Boot is enabled and you boot Windows 8 or other properly done Secure Boot OS, your system will be secure"
The trouble is that you buy a machine built by %cheapest supplier% with an OEM copy of Windows. Other than the hologram printed on the box how do you know that it's secure?
Unless I order the secure BIOS chip direct form a trusted maker and solder it on myself, then install a retail DVD of Windows direct from Microsoft - then all these "security" features are like ordering drugs on the internet and relying on them coming in a sealed package!
Photo of Bruce Schneier by Per Ervland.
Schneier on Security is a personal website. Opinions expressed are not necessarily those of IBM Resilient.