ヘルプ
英语(美国) | English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

imx 93 Win10 IoT: Securing UEFI and Windows

キャンセル
提案をオンにする
自動提案では、入力時に可能な一致が提案されるので検索結果を素早く絞り込むことができます。
次の結果を表示 
表示  限定  | 次の代わりに検索 
もしかして: 

imx 93 Win10 IoT: Securing UEFI and Windows

‎11-19-2023 09:40 PM
973件の閲覧回数
aditya_h
Contributor II

I am currently exploring secure boot for imx93. I was able to enable secure boot up to UEFI stage using steps given in user guide (User Guide) . But steps for securing UEFI and windows image is not clearly described. For securing UEFI we need PK,KEK and databases. Do I need to create all the variables or it should be already present? If it is already present how do I enable it?

ラベル(1)
ラベル
0 件の賞賛
返信
2 返答(返信)

‎11-26-2023 11:28 PM
916件の閲覧回数
Naveen_V_M
Contributor I

Do we need to create the Signature Database and forbidden signature database explicitly or are they part of UEFI infrastructure?

0 件の賞賛
返信

‎11-21-2023 05:03 AM
947件の閲覧回数
Harvey021
NXP TechSupport
NXP TechSupport

UEFI and Windows use their own chain of trust, which is composed of Platform Key (PK), Key Exchange Key
(KEK), forbidden signature database (dbx) and valid signature database (db). Those credentials are stored as
UEFI Secure variables. Those variables must be programmed at OEM site.

 

Regards

Harvey

0 件の賞賛
返信