<!--
# SPDX-FileCopyrightText: 2024 - 2025 ENCRYPTED SUPPORT LLC <adrelanos@kicksecure.com>
#
# SPDX-License-Identifier: Apache-2.0
-->
{{Header}}
{{title|title=
Measured Boot
}}
{{#seo:
|description=Measured Boot
}}
{{boot_firmware}}
{{intro|
Measured Boot
}}

{{stub}}

* https://tech.michaelaltfield.net/2023/02/16/evil-maid-heads-pureboot/
* https://osresearch.net/
** https://github.com/linuxboot/heads
* https://docs.dasharo.com/unified-test-documentation/dasharo-security/203-measured-boot/
* https://trenchboot.org/
** https://trenchboot.org/FAQ/
* https://www.system-transparency.org/
** https://docs.system-transparency.org/st-1.1.0/

On measured boot, which seems better than SecureBoot:

* https://www.youtube.com/watch?v=7UhwK3g99_0
* https://www.youtube.com/watch?v=0RSH3JXqShE
* https://www.youtube.com/watch?v=Qc75hobVjbo
* https://www.youtube.com/watch?v=pL0AMLiwPj8

= Discussions =
* [https://forum.qubes-os.org/t/flashkeeper-the-solution-to-spi-flash-firmware-tampering/28028/1 Flashkeeper: The Solution to SPI Flash Firmware Tampering?] [Due to Qubes forums policy, that forum thread in the "All around Qubes" category can only be viewed by users that are logged in.]
* https://github.com/linuxboot/flashkeeper
** https://nlnet.nl/project/Flashkeeper/
** https://github.com/linuxboot/heads/pull/1568#issuecomment-2284151446
* https://forum.qubes-os.org/t/discussion-on-purism/2627/135
** https://www.youtube.com/watch?v=hx9MS1_1e2c
* https://forums.whonix.org/t/fs-verity-in-linux-5-4/8911

= Footnotes=
<references/>
{{Footer}}
[[Category:Design]]
[[Category:Development]]