@iska @safiuddinkhan @cyberspook @m0xee @dushman Chromium OS doesn't have verified boot, only Chrome OS does.
There is no system outside of ARM phones and tablets which take advantage of a HSM or TEE to allow storing OS signing keys (not the same as bootloader/kernel keys, which is secure boot).
There is no system outside of ARM phones and tablets which take advantage of a HSM or TEE to allow storing OS signing keys (not the same as bootloader/kernel keys, which is secure boot).
@inference @safiuddinkhan @cyberspook @m0xee @dushman
You can boot chromeos there too, but it has at least one backdoor so you're not safe.
https://www.google.com/intl/en/chromebook/termsofservice.html
(section 4)
chromebooks are bad too.
https://www.theregister.com/2019/08/22/buying_a_chromebook_dont_forget_to_check_when_it_expires/
Would you trust your house to a thief?
I've already mentioned an article about verified boot on normal GNU/Linux.
@inference @safiuddinkhan @cyberspook @m0xee @dushman
You can boot chromeos there too, but it has at least one backdoor so you're not safe.
https://www.google.com/intl/en/chromebook/termsofservice.html
(section 4)
chromebooks are bad too.
https://www.theregister.com/2019/08/22/buying_a_chromebook_dont_forget_to_check_when_it_expires/