Full Disk Encryption in openSUSE using systemd, TPM2 and FIDO2 keys
Learning about sdbootutil
Presented by:
Alberto Planas
Alberto Planas
from
SUSE
SUSE employee and member of openSUSE Team since 2012.
No video of the event yet, sorry!
With the integration of systemd-boot or grub2-bls bootloaders in the distribution, both (partially) following the boot loader specification (BLS), we have the chance to use the systemd tools to set a full disk encryption installation using TPM2 and FIDO2 keys.
The sdbootutil is managing both aspects, the BLS integration and the FDE configuration. In this talk we will present how this model works in openSUSE and how can be used and troubleshooted.
- Date:
- 2025 June 27 - 17:15
- Duration:
- 45 min
- Room:
- Gallerie
- Conference:
- openSUSE Conference 2025
- Language:
- Track:
- New Technologies
- Difficulty:
- Medium
- Implementing Security with an Open Source Hardware Secure Element including a Code Signing & Secure Boot Demo
- Start Time:
- 2025 June 27 17:00
- Room:
- Seminar Room 1
- lightning talks
- Start Time:
- 2025 June 27 17:15
- Room:
- Saal