UEFI Secure Boot for Amazon EC2 instances (original) (raw)
DocumentationAmazon EC2User Guide
UEFI Secure Boot builds on the long-standing secure boot process of Amazon EC2, and provides additional defense-in-depth that helps customers secure software from threats that persist across reboots. It ensures that the instance only boots software that is signed with cryptographic keys. The keys are stored in the key database of the UEFI non-volatile variable store. UEFI Secure Boot prevents unauthorized modification of the instance boot flow.
Contents
- How UEFI Secure Boot works with Amazon EC2 instances
- Requirements for UEFI Secure Boot on Amazon EC2
- Verify whether an Amazon EC2 instance is enabled for UEFI Secure Boot
- Create a Linux AMI with custom UEFI Secure Boot keys
- Create the AWS binary blob for UEFI Secure Boot
UEFI variables
How UEFI Secure Boot works
Did this page help you? - Yes
Thanks for letting us know we're doing a good job!
If you've got a moment, please tell us what we did right so we can do more of it.
Did this page help you? - No
Thanks for letting us know this page needs work. We're sorry we let you down.
If you've got a moment, please tell us how we can make the documentation better.