Buying a Framework without Intel Boot Guard or AMD PSB enabled? (aussie.zone)

submitted 10 months ago* (last edited 10 months ago) by ky56@aussie.zone to c/framework@lemmy.ml

2 comments fedilink hide all child comments

Is there any progress regarding buying a Framework without Intel Boot Guard or AMD PSB enabled?

There is a dead discussion on the framework community form where framework talked about

exploring the idea of shipping a version of the mainboard with boot guard disabled for those who want to run their own firmware

back in 2021 but nothing since.

https://community.frame.work/t/intel-boot-guard-coreboot/1178

top 2 comments

sorted by: hot top controversial new old

[-] Jumuta@sh.itjust.works 2 points 10 months ago

how does boot guard work? can you not just flash new firmware using a ch341a programmer?

[-] ky56@aussie.zone 5 points 10 months ago* (last edited 10 months ago)

Intel Boot Guard stores the public signing key in OTP fuses inside the PCH. Meaning that you need the private key to sign new BIOS firmware. This "feature" has existed since Haswell 4th gen processors.

This is a simplified description of how it works because it's still beyond my full understanding.

More info here: https://github.com/corna/me_cleaner/wiki/Intel-Boot-Guard

this post was submitted on 17 Nov 2023

14 points (93.8% liked)

Framework Laptop Community

2586 readers

1 users here now

Related communities:

Buy it for life community: !buyitforlife@slrpnk.net
Fairphone community: !fairphone@lemmy.ml

founded 3 years ago

MODERATORS

uthredii@lemmy.ml

uthredii@programming.dev

Framework Laptop Community

Related links:

Related communities: