0

I'm currently at HSI:0 (High Speed Synchronous Serial Interface level 0) and would like to somehow upgrade it to HSI:1. My TPM is 1.2 and not upgradable - is this even possible?

BTW - Running Ubuntu 24.04.3lts with 6.8.0-85-generic kernel on Wayland w/standard GNOME JavaScript environment on old Gateway E-475M laptop w/4Gb RAM

My banking and secure stuff is run on different laptop running WIN10 w/ESET internet security 19.0.14.0 - but do use ubuntu laptop for email and browsing/gaming ~ do I really need HSI:1? My backups are done using G4L image (lzop) to thumb drive...

Improve this question
3
  • Sorry, that is hardware, nothing to do with Ubuntu. Commented Jan 2 at 15:48
  • ...as long as there's nothing I can do about it -GREAT! Commented Jan 2 at 16:08
  • 1
    you can though @TheMAJOR :) Commented Jan 2 at 17:23

1 Answer 1

Reset to default
2

The 5 bullet points for failing HS:1 are...

  • UEFI Secure Boot has been turned off.
  • The kernel is tainted due to a non-free module or critical firmware issue.
  • The kernel is not locked down.
  • Unencrypted swap partition.
  • The installed fwupd is running with custom or modified plugins.

1, 2, 4, and 5 are up to the user. The 2nd means you can not use 3rd party drivers (assumption: this means not installing kernel modules for nVidia and the NIC; NIC, to be sure, should be Intel). 3 is default. 4: We use a swap file. You can use LUKS, dm-crypt, or crypttab for that.

Improve this answer
1
  • will being limited to TM 1.2 and unable to upgrade to TPM 2.0 prevent HSI:1? Linux Kernel Verifications seems to have passed, but UEFI Secure Boot failed ~ looked in bios for UEFI but nothing there (old Gateway laptop...). Commented Jan 7 at 15:41

You must log in to answer this question.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.