Hi Jan, Thanks for your email, currently tboot works with grub on both UEFI and legacy platforms. Meanwhile, we are working on a PoC of UEFI 64 bit tboot, which will support multiple usages including what you mentioned in your email. As this work is non-trivial, any suggestions/proposals are welcome!
Thanks, -Ning -----Original Message----- From: Jan Schermer [mailto:j...@schermer.cz] Sent: Monday, April 18, 2016 4:59 AM To: tboot-devel@lists.sourceforge.net Subject: [tboot-devel] booting tboot directly as EFI STUB? Hello, is it possible to add support for loading tboot directly instead of using GRUB, in the same way Linux kernel supports it? https://www.kernel.org/doc/Documentation/efi-stub.txt This would greatly simplify the setup of tboot and remove one unnecessary component (grub) which presents a quite large attack surface. This way tboot would get measured by BIOS directly into CRTM, and we could immediately follow DRTM from here... And I could maybe sign the tboot binary for Secure Boot instead of using poorly-documented GRUB :-) Thanks Jan ------------------------------------------------------------------------------ Find and fix application performance issues faster with Applications Manager Applications Manager provides deep performance insights into multiple tiers of your business applications. It resolves application problems quickly and reduces your MTTR. Get your free trial! https://ad.doubleclick.net/ddm/clk/302982198;130105516;z _______________________________________________ tboot-devel mailing list tboot-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tboot-devel ------------------------------------------------------------------------------ Find and fix application performance issues faster with Applications Manager Applications Manager provides deep performance insights into multiple tiers of your business applications. It resolves application problems quickly and reduces your MTTR. Get your free trial! https://ad.doubleclick.net/ddm/clk/302982198;130105516;z _______________________________________________ tboot-devel mailing list tboot-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tboot-devel
