Secureboot is at the "BIOS" level. A UEFI "BIOS" will not load an unsigned boot loader.
A TPM is a hardware module that is available to the OS. You could probably use it to implement something like Secure Boot, but the value of a TPM is that it let's you perform certain operations (say encryption/decryption) and store certain information (say keys) in "safe" way. Common usage is to use it for disk encryption key storage.
Power management, mobile and firmware developer on Linux. Security developer at nvidia. Ex-biologist. Content here should not be interpreted as the opinion of my employer. Also on Mastodon and Bluesky.
![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
Re: Virtualization
Date: 2012-06-01 12:04 pm (UTC)A TPM is a hardware module that is available to the OS. You could probably use it to implement something like Secure Boot, but the value of a TPM is that it let's you perform certain operations (say encryption/decryption) and store certain information (say keys) in "safe" way. Common usage is to use it for disk encryption key storage.