The biggest difference between Windows 10 and Windows 11 is that with Windows 10, one could turn off UEFI and Secure Boot to replace Windows with Linux. With Windows 11, both UEFI and Secure Boot are required. In this article, we will outline the drawbacks of Secure Boot and UEFI – which are so great that if you have the misfortune of having purchased a Windows 11 computer, your only option is to throw it in the dumpster.
What is UEFI BIOS?
For more than 20 years, BIOS consisted of a small program that was independent of the operating system. Then, in May 2006, Bill Gates gave a speech announcing a “better” replacement for BIOS called the Unified Extensible Firmware Interface (aka UEFI) – a secret closed source program that was 10 times bigger than the prior BIOS.
UEFI is now a near monopoly BIOS found on all Windows and Apple computers and nearly all Linux computers. Thankfully, in 2007, Google began supporting Coreboot - a free open source alternative to UEFI. Coreboot eventually became the BIOS program for all Chromebooks. Recently, a Linux computer maker called Purism also started using Coreboot BIOS on their Librem 14 Laptops.
Is UEFI BIOS Secure?
We know from the Snowden and Vault 7 documents that the NSA has several back doors into the Windows Operating System since at least 1998. Here, we will look at evidence that the NSA has placed back doors in the UEFI BIOS firmware program since 2007.
Why is a Secure BIOS Important?
If a hacker takes over your BIOS, they can control your operating system, applications and all of your documents stored on your computer hard drive.
Dark History of UEFI
The UEFI security signing mechanism is identical to the Microsoft Windows security signing. I do not mean similar. I mean IDENTICAL. Many sections of UEFI code even begins with the word “win.” Here is a quote from Bill on May 23, 2006, the day he announced UEFI: