Description
Signs EFI binaries and drivers for Secure Boot workflows. It is useful for administrators and packagers who need custom bootloaders, kernels, or EFI tools to be accepted by trusted firmware policies.
Signing boot components affects system trust. Protect private keys, verify what is being signed, and keep recovery media available before changing boot files.