Home opinion-and-analysis Open Sauce Is secure boot going to become compulsory on servers?

Author's Opinion

The views in this column are those of the author and do not necessarily reflect the views of iTWire.

Have your say and comment below.

Is secure boot going to become compulsory on servers? Featured
Get all your tech news delivered to your mail box five days a week
iTWire UPDATE - it's FREE!


Does the Germany-based GNU/Linux company SUSE know something about Microsoft's secure boot plans that other Linux companies do not?

SUSE's enterprise server distribution has today (July 8 in the US) become the first enterprise server distribution to incorporate support for secure boot.

It is one of several new features in the third service pack for SLES 11. The original release of SLES 11 was made in 2009.

Secure boot is one of the features available in the Unified Extensible Firmware Interface or UEFI, the replacement for the BIOS on motherboards. It was implemented in Windows 8 which was released in October last year.

Microsoft's implementation uses cryptographic keys to authenticate the kernel that is being loaded. Secure boot has to be turned on on all hardware that is pre-installed with Windows 8. Hence anyone who wishes to boot an image on such hardware would need to obtain a key from Microsoft.

Some GNU/Linux distributions have developed their own methods of booting on such hardware. However, installing such distributions on the same disk alongside Windows 8 is still not an easy task for the average user.

But thus far, secure boot has been seen only as an issue for desktop users, never in the server room.

SUSE has closer ties to Microsoft than other GNU/Linux companies. It signed a patent licensing deal with Microsoft back in 2006, and renewed the deal when it fell due.

So is there something about the spread of secure boot to servers as a compulsory feature that it knows something about?

Matthias Eckerman, a senior product manager at SUSE, has been quoted by the website ServerWatch as saying that market analysis shows that secure boot may be deployed and even required on servers "going forward".

Secure boot support was implemented in SUSE's community distribution, openSUSE, in its last release and features from this distribution often make their way into the enterprise distribution.

Given Windows 8 desktop take-up by businesss that can only be described as a disaster, one would have thought that Microsoft would think twice about making lockout mechanisms such as secure boot compulsory for its server range.

But then Microsoft has not always been known to make sane decisions, especially under the stewardship of Steve Ballmer.

OWN THE FUTURE OF SOFTWARE

Tomorrow, 26 August we’re delivering a FREE day of high-impact content to give you the know-how to lead in the App Economy. Please don’t be sorry you missed it.

• Keynotes on how software is rewriting businesses the world over, including our own backyard

• View code level details with context and repair problems quickly

• Fix problems in minutes before they wreak havoc

• Streams covering DevOps, Security and Management Cloud from pioneers at the coalface.

Register Now - it's FREE!

CLICK TO REGISTER!

ITWIRE SERIES - IS YOUR BACKUP STRATEGY COSTING YOU CLIENTS?

Where are your clients backing up to right now?

Is your DR strategy as advanced as the rest of your service portfolio?

What areas of your business could be improved if you outsourced your backups to a trusted source?

Read the industry whitepaper and discover where to turn to for managed backup

FIND OUT MORE!

Sam Varghese

website statistics

A professional journalist with decades of experience, Sam for nine years used DOS and then Windows, which led him to start experimenting with GNU/Linux in 1998. Since then he has written widely about the use of both free and open source software, and the people behind the code. His personal blog is titled Irregular Expression.

Connect