Learn about UEFI Secure Boot implementation in cloud environments through this 23-minute conference talk from the OpenInfra Foundation. Explore how UEFI Secure Boot prevents unauthorized code execution by requiring signed boot loaders, kernels, and drivers. Discover the evolution from Legacy BIOS to UEFI boot in bare metal workloads, and understand OpenStack Nova's support for UEFI boot since Queens and Secure Boot for QEMU/KVM since Wallaby. Gain insights into Secure Boot benefits for virtual workloads, learn about enabling options in OpenStack, and evaluate various base distro images for Secure Boot compatibility. Master the process of building custom images with demonstrated tooling and understand the configuration of Ironic for grub network-boot in bare metal end-to-end Secure Boot deployments.
Overview
Syllabus
The state of UEFI Secure Boot in cloud workloads
Taught by
OpenInfra Foundation
Related Courses
-
UEFI Secure Boot in U-Boot
-
Dealing with UEFI Secure Boot Using Yocto Project
-
Unifying Secure Boot Code and Getting Additions into UEFI
-
Implementing UEFI-based Secure Boot and OTA Updates for Embedded ARM Devices
-
Updating Linux with TUX: Trust Update for Linux Kernel
-
Enabling UEFI Secure Boot on x86 Platforms with Yocto and Meta-Secure-Core - Yocto Project
