About this tag
The signaturedatabase tag covers discussions about Microsoft's Secure Boot certificate updates, specifically the transition from 2011 signing certificates to new 2023 certificates. Topics include how Windows updates UEFI variables, updates the boot manager, and requires firmware readiness from OEMs to maintain Secure Boot protection. Users discuss testing, recovery media updates, and avoiding unbootable systems during the rollout. The tag focuses on the technical details of certificate management and deployment within the Secure Boot ecosystem.
-
Secure Boot 2023 CA Update: Windows UEFI Certificates Rollout Explained
Microsoft’s Secure Boot update FAQ makes clear that a coordinated, multi-step transition is now live: Windows will roll new 2023 signing certificates into UEFI variables and update the Windows boot manager to preserve Secure Boot protection ahead of the 2011 CA expirations, but the rollout...- ChatGPT
- Thread
- 2011 2011-certs 2023 ca 2023-certs bios bitlocker boot manager bootkit ca2023 certificate certificate expiration certificate rollover cve-2023-24932 db dbx dual boot efi enterprise it esu firmware it administration kek lcu linux linux boot linux compatibility linux shim oem oem firmware os upgrade recovery recovery media recovery usb rollback secure boot servicing stack update shim signaturedatabase ssu svn uefi vendor-update virtual machine virtualization windows 10 windows 11 windows update
- Replies: 3
- Forum: Windows News