Quote Originally Posted by Chas View Post
Truth be told, I have not understood most of this thread. So can someone tell me which programmes are being blocked by Microsoft, please?

Regards

Chas
Hi Chas,

My understanding of the situation is only slightly different from that which KiltedCodeWarrior has described in his post. Here is the difference:

My understanding of the proposal is that it is to be implemented much as Secure Sockets Layer (SSL, identified by https://) presently secures connections on the World Wide Web: a client (e.g., your computer) initiates a connection with a server (e.g., a host on the WWW), which responds with a copy of its certificate testifying to its authenticity. If the client finds that certificate acceptable the connection is established and communication proceeds. In the proposed "secure boot" implementation the BIOS plays the part of the client and any software to be executed plays the part of the server.

The point in contention is who shall have the ability to issue authentic certificates, and what their motives may be. The fear of us who distrust Microsoft is that Microsoft will somehow manage to obtain effective control over the licensing of certificate issuers and therefore over what software can be loaded onto our machines, and will use that control to exclude any software which does not provide to Microsoft an amount of power, income, and control satisfactory to Microsoft.

I agree with those who believe that there is great need to improve the security of the boot process, but I do not trust Microsoft to refrain from using that "improvement" to increase its power, income, and control. And that is my answer to your question, Chas: nothing at present, but potentially anything that does not please Microsoft.

Thank you for your interest and concern.

.