![]() It should be cryptographically verified Checksum or other CRCs are not validation. ![]() ![]() Microsoft does not have a mechanism to validate the firmware package, and is dependent on the firmware provider (creator of package) to verify the payload has not been tampered with. The purpose of the UNIQUE ID CHID is so the firmware provider will be able to create a firmware update package/BIOS that will be deployed via Windows Update (WU) to all the systems that match the UNIQUE ID CHID. However, some recent changes require that firmware providers combine Computer Hardware ID (CHID) targeting along with a model unique EFI System Resource Table (ESRT) UEFI_RES\ in the ESRT is critical. This ability has been available as early as Windows 8.1. ![]() This platform provides a consistent, reliable firmware update experience, and it improves the ability to deliver important system firmware updates for end-users. Windows supports a platform for delivering system and device firmware updates wrapped in driver packages that are delivered using Microsoft Windows Update (WU) and then handed off to and processed in the UEFI UpdateCapsule function.
0 Comments
Leave a Reply. |