Feeds

Spanish Linux group files antitrust complaint against Microsoft

Claims UEFI Secure Boot is anticompetitive

Mobile application security vulnerability report

A Spanish open source software users' association has filed an antitrust complaint against Microsoft with the European Commission, claiming that the company's implementation of UEFI Secure Boot stifles competition.

Hispalinux, an 8,000-member organization that advocates for and facilitates Linux use in Spain, filed the complaint with the Commission's Madrid office on Tuesday, Reuters reports.

In it, the group alleges that Microsoft has used UEFI Secure Boot, the feature of the Universal Extensible Firmware Interface that requires operating systems to be digitally signed before they will boot, as an "obstruction mechanism" against non-Windows systems, including Linux.

Microsoft requires all hardware OEMs to ship their devices with Secure Boot enabled by default if they want to receive Windows 8 compatibility certification, using a key provided by Redmond. As a result, Linux users must resort to clumsy workarounds to install the OS, particularly if they want to dual-boot.

"This is absolutely anti-competitive," Hispalinux head José Maria Lancho told Reuters. "It's really bad for the user and for the European software industry."

In a lengthy blog post on the issue (in Spanish), the group argues that Windows is far more vulnerable to viruses and other malware than alternative operating systems are, and that Microsoft's use of UEFI as a control mechanism is not a technical achievement, but a technical barrier.

By actively opposing Secure Boot, Hispalinux joins such organizations as the Free Software Foundation, which has lobbied OEMs to turn off the system by default and has urged consumers to boycott Windows 8 PCs.

The group's antitrust complaint comes not long after the European Commission slapped Microsoft with a €561m fine for violating an earlier antitrust agreement, this one over the company's bundling of Internet Explorer with Windows.

Whether the Commission will look favorably upon Hispalinux's concerns in the UEFI matter, however, remains to be seen. In a letter dated January 31, EU Competition Chief Joaquin Almunia said the Commission was "aware of the Microsoft Windows 8 security requirements," but that so far it had seen no red flags.

"The Commission is currently not in possession of evidence suggesting that the Windows 8 security requirements would result in practices in violation of EU competition rules," the letter reads. "In particular, on the basis of the information currently available to the Commission it appears that the OEMs can decide to give the end users the option to disable the UEFI secure boot."

Given that assessment, unless Hispalinux's 14-page complaint can offer evidence to the contrary, it seems likely to fall on deaf ears. ®

The Essential Guide to IT Transformation

More from The Register

next story
NO MORE ALL CAPS and other pleasures of Visual Studio 14
Unpicking a packed preview that breaks down ASP.NET
Cheer up, Nokia fans. It can start making mobes again in 18 months
The real winner of the Nokia sale is *drumroll* ... Nokia
Mozilla fixes CRITICAL security holes in Firefox, urges v31 upgrade
Misc memory hazards 'could be exploited' - and guess what, one's a Javascript vuln
Put down that Oracle database patch: It could cost $23,000 per CPU
On-by-default INMEMORY tech a boon for developers ... as long as they can afford it
Google shows off new Chrome OS look
Athena springs full-grown from Chromium project's head
Apple: We'll unleash OS X Yosemite beta on the MASSES on 24 July
Starting today, regular fanbois will be guinea pigs, it tells Reg
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
prev story

Whitepapers

Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.
Seven Steps to Software Security
Seven practical steps you can begin to take today to secure your applications and prevent the damages a successful cyber-attack can cause.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.