• 0 Posts
  • 3 Comments
Joined 2 years ago
cake
Cake day: July 31st, 2023

help-circle

  • I use heads firmware, which seals an otp key in the tpm to let you verify the integrity of the firmware, which then uses your gpg pubkey written into the firmware to verify the integrity of the boot partition.
    An open, self-controlled equivalent to secure boot that relies on the tpm and your own gpg key, instead of on vendor secure boot signing keys. Very cool project!