Hardening the Kernel for Secure Boot

Explore the intricacies of kernel hardening for Secure Boot in this 28-minute conference talk from the Linux Plumbers Conference. Delve into the security model of Secure Boot, which operates on the premise that an operating system can only boot if all previously executed code is trusted. Learn about the necessity of preventing even privileged users from executing code in ring 0 and discover various kernel entry points that require hardening. Gain insights into the methods and techniques for implementing these crucial security measures, as presented by Matthew Garrett from Nebula.