http://www.tyan.com
Enroll Efi Image
Allow the image to run in Secure Boot mode. Enroll SHA256 hash certificate of a
PE image into Autorized Signature Database (db)
Remove ‘UEFI CA’ from DB
Device Guard ready system must not list ‘Microsoft’ UEFI CA’ Certificate in
Authorized Signature database (db)
Restore DB defaults
Restore DB variable to factory defaults
Platform Key (PK)
Enroll Factory Defaults or load certificates from a file:
1. Public Key Certificate in:
a) EFI_SIGNATURE_LIST
b) EFI_CERT_X509 (DER encoded)
c) EFI_CERT_RSA2048 (bin)
d) EFI_CERT_SHA256,384,512
2. Authenticated UEFI Variable
3. EFI PE/COFF Image(SHA256)
Key Source:
Default, External, Mixed, Test
Set New
Key Exchange Keys
Enroll Factory Defaults or load certificates from a file:
1. Public Key Certificate in:
a) EFI_SIGNATURE_LIST
b) EFI_CERT_X509 (DER encoded)
c) EFI_CERT_RSA2048 (bin)
d) EFI_CERT_SHA256,384,512
2. Authenticated UEFI Variable
3. EFI PE/COFF Image(SHA256)
Key Source:
Default, External, Mixed, Test
Authorized Signatures
Enroll Factory Defaults or load certificates from a file:
1. Public Key Certificate in:
a) EFI_SIGNATURE_LIST
b) EFI_CERT_X509 (DER encoded)
c) EFI_CERT_RSA2048 (bin)
d) EFI_CERT_SHA256,384,512
2. Authenticated UEFI Variable
3. EFI PE/COFF Image(SHA256)
Key Source:
Default, External, Mixed, Test
To Next Page
Loading...
