SBP

Jan 1, 0001

Definition

SBP, or Secure Boot Policy, refers to a set of configurations and rules that ensure a system boots using only software that is trusted by the hardware manufacturer. This is achieved by verifying the digital signatures of the bootloader, operating system, and any other critical components during the boot process. The goal is to prevent unauthorized or malicious software from running at startup, thereby enhancing the security posture of the system.

Secure Settings Example

secureBoot:
  enabled: true
  allowedSignatures:
    - "OEM-Trusted-Certificate"
    - "Microsoft-Windows-Production-PCA-2011"
  fallbackPolicy: "deny"

Insecure Settings Example

secureBoot:
  enabled: false
  allowedSignatures:
    - "*"
  fallbackPolicy: "allow"

SBP

Definition

Secure Settings Example

Insecure Settings Example

Ask AppSec: free security newsletter

Ask AppSec: free security newsletter