DigiNews

Summary

An analysis of Secure Boot certificate expiration and its impact on Linux systems. The piece explains how the 2011 Microsoft signing key will expire, the 2023 replacement needs to be enrolled via firmware updates or KEK/db updates, and the role of LVFS/fwupd in applying those updates, with guidance for admins on potential mitigations like disabling Secure Boot or updating firmware.