I happen to like knowing that my mobile device did not have a ring 0 backdoor installed before it left the factory in Asia. SecureBoot gives me that confidence.
replyNo it doesn't? The factory programs in the secure boot public keys
replyThe public keys are provided by the developer. Google, or Apple, for example. It's how they know that nothing was tampered with before it left the factory.
replyNothing has been tampered with doesn't mean there's no factory backdoor, it just only means same as factory, nothing more.
replyApple or Google know what the cryptographic signature of the boot should be. They provide the keys. It's how they know that "factory reset" does not include covert code installed by the factory. That's what we're talking about.
reply