Go to main content

Oracle® X7 Series Servers Administration Guide

Exit Print View

Updated: October 2019

Trusted Execution Technology and UEFI Secure Boot

Your server supports the following security features:

  • Trusted Execution Technology (TXT) provides authenticity of a platform and its operating system.

    When enabled, TXT ensures that the operating system (OS) starts in a trusted environment, and provides the OS with additional security capabilities not available to an untrusted OS. Using cryptographic techniques, TXT provides measurements of software and platform components so that system software as well as local and remote management applications may use those measurements to make trust decisions. Trusted Execution Technology defends against software-based attacks aimed at stealing sensitive information by corrupting system or BIOS code, or modifying a platform's configuration.

  • UEFI Secure Boot defines how platform firmware can authenticate a digitally signed UEFI image, such as an operating system loader or a UEFI driver.

    When enabled, UEFI Secure Boot provides a policy-based invocation of various UEFI executable images, using cryptographic signatures to identify the software publishers. UEFI Secure Boot also requires all third-party UEFI drivers and operating system boot loaders to be signed by Microsoft or with Key Exchange Key (KEK) by using BIOS Setup Utility.

Trusted Execution Technology and UEFI Secure Boot are disabled by default. For configuration information, refer to your server service manual.