Secure boot has been around for many years now, having been introduced into the UEFI spec in 2006. It is one of those things that tends to be turned off when installing Linux. There are different opinions around secure boot and whether it solves a problem or not. It is becoming more common for environments to require keeping secure boot turned on. Secure boot is not going away in the near future. It is now being used in the cloud. We need to get to know our frenemy.
We will tackle:
* Introducing how secure boot works
* How does secure boot work with Linux
* What is a SHIM and when does a vendor need one
* How does secure boot affect building out of tree kernel modules
* How to add kernel modules while keeping secure boot enabled
Demo: Secure boot in a VM
