Question 1
What is the primary purpose of a hardware security module (HSM) compared to a TPM?
Question 2
Which UEFI secure boot key is used to authorize changes to the firmware’s signature databases (db and dbx)?
Question 3
Which cryptographic mechanism ensures firmware integrity and authenticity by combining hashing with asymmetric encryption?
Question 4
A firmware update fails signature verification on a server. Which is the most likely cause?
Question 5
After legitimately updating the bootloader in a measured boot system, what must be done to ensure remote attestation succeeds?
