UEFI Variables For Amazon EC2 Instances
Introduction When you start an instance with the boot mode configured as UEFI, a key-value storage for variables is initialized. This storage can be utilized by both UEFI and the operating system of the instance to keep UEFI variables. UEFI variables are utilized by the boot loader and the operating system to set up the initial system startup. They enable the operating system to control specific aspects of the boot process, such as the order in which devices boot or handling the keys for UEFI Secure Boot. UEFI Secure Boot for Amazon EC2 Instances UEFI Secure Boot enhances the traditional secure boot mechanism of Amazon EC2 and provides extra layers of defense to help customers protect their software from threats that survive reboots. It guarantees that the instance boots only software that is verified with cryptographic keys. These keys are maintained within the key database of the UEFI non-volatile variable store. UEFI Secure Boot inhibits any unauthorized alterations to the ins...