The idea is quite simple, and all the pieces should already be there - but what is, IMO, lacking is putting them all together:

  • take the TMP ownership,
  • put your own keys inside,
  • use them to sign the bootloader,
  • use TPM to unlock encrypted /boot and / partitions.

The outcome would be at least a nice, step-by-step instructions on how to do it all.

Looking for mad skills in:

Nothing? Add some keywords!

This project is part of:

Hack Week 15

Activity

  • almost 3 years ago: blarson liked Unattended secure boot with TPM.
  • almost 3 years ago: mwolcendorf started Unattended secure boot with TPM.
  • almost 3 years ago: mwolcendorf originated Unattended secure boot with TPM.
  • Show History

    Comments

    Be the first to comment!

    Similar Projects

    This project is one of its kind!