Windows 8 won't kill Linux, says Microsoft

Powered by SC Magazine
 

But some don't buy it.

A war of words over a default security feature on Windows 8 machines has arisen over the past week, with some accusing Microsoft of using it to lock out competition.

Red Hat researcher Matthew Garrett said the secure boot feature, within the Unified Extensible Firmware Interface (UEFI), was being used by Microsoft to let only OS loaders with digital signatures run on machines pre-loaded with Windows 8.

This would make it very hard for other operating systems, in particular generic versions of Linux, to run on such computers, Garrett said.

"If Microsoft were serious about giving the end user control, they'd be mandating that systems ship without any keys installed," he said.

UEFI was designed to ensure greater security at the firmware level, yet Garrett said Microsoft is misusing the feature for its own gain.

“As things stand, Windows 8 certified systems will make it either more difficult or impossible to install alternative operating systems."

Garrett said Windows 8 certification required hardware ship with UEFI switched on and it did not require a feature that would allow UEFI to be disabled.

“Why is this a problem? Because there's no central certification authority for UEFI signing keys. Microsoft can require that hardware vendors include their keys. Their competition can't,” Garrett said.

“A system that ships with Microsoft's signing keys and no others will be unable to perform secure boot of any operating system other than Microsoft's.

"No other vendor has the same position of power over the hardware vendors. Red Hat is unable to ensure that every OEM carries their signing key. Nor is Canonical. Nor is Nvidia, or AMD or any other PC component manufacturer. Microsoft's influence here is greater than even Intel's.”

ZDNet reported that the Linux Australia Council had considered petitioning the Australian Competition and Consumer Commission with claims Microsoft's secure boot was anti-competitive.  

Microsoft: We aren't locking you out

Microsoft said secure boot did not block other operating system loaders, but is simply “a policy that allows firmware to validate authenticity of components.”

The Redmond giant said it did not want to stop PC makers from allowing users to decide what went on machines.

“Microsoft supports OEMs having the flexibility to decide who manages security certificates and how to allow customers to import and manage those certificates, and manage secure boot,” said Microsoft’s Tony Mangefeste, in a blog post.

“We believe it is important to support this flexibility to the OEMs and to allow our customers to decide how they want to manage their systems.”

Microsoft was convinced users would be able to run other operating systems with the security feature in place, saying the flexibility had already been shown off on a Samsung tablet with Windows 8 Developer Preview.

“For the enthusiast who wants to run older operating systems, the option is there to allow you to make that decision,” Mangefeste added.

Garrett remained unconvinced, saying it remained the case that a computer with only manufacturer and Microsoft keys would not be able boot a generic copy of Linux.

“If Microsoft were serious about giving the end user control, they'd be mandating that systems ship without any keys installed,” he added.

“The user would then have the ability to make an informed and conscious decision to limit the flexibility of their system and install the keys.”

This article originally appeared at itpro.co.uk

Copyright © ITPro, Dennis Publishing


Windows 8 won't kill Linux, says Microsoft
 
 
 
Top Stories
IBM denies plans to cut 112k jobs
But admits to further restructuring.
 
ATO investigates 25 tech giants in tax hunt
Prepared to take tax evaders to court.
 
Immigration, Customs restructure IT leadership
Customs CIO promoted into transformation role.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest articles on BIT Latest Articles from BIT
Franchisees, here's something you should know about
Jan 23, 2015
You need to know the Code if you are a franchisee or franchisor as the penalties are significant.
Xero users rejoice! Quoting has finally arrived
Jan 23, 2015
It has taken years, but Xero has at last added integrated quoting to its online accounting software.
You can now get a no-contract wi-fi tablet from Telstra
Jan 17, 2015
Telstra has began selling wi-fi tablets out of contract without paying extra for cellular ...
Get your business ready for 2015: mobile payments
Jan 2, 2015
These handy apps from MYOB, Xero and others can reduce your administrative load and improve ...
Xero prepares for key feature coming in 2015
Dec 19, 2014
Xero users will be able to track how their business is comparing to other Xero users.
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  36%
 
Your insurance company
  5%
 
A technology company (Google, Facebook et al)
  9%
 
Your telco, ISP or utility
  8%
 
A retailer (Coles, Woolworths et al)
  4%
 
A Federal Government agency (ATO, Centrelink etc)
  18%
 
An Australian law enforcement agency (AFP, ASIO et al)
  14%
 
A State Government agency (Health dept, etc)
  7%
TOTAL VOTES: 2965

Vote
Do you support the abolition of the Office of the Information Commissioner?

   |   View results
I support shutting down the OAIC.
  27%
 
I DON'T support shutting the OAIC.
  73%
TOTAL VOTES: 936

Vote