Which part of the PC startup process verifies the digital signature of the OS kernel?

1. Measured Boot
2. Trusted Boot
3. Secure Boot
4. POST

Answer :

Final answer:

Secure Boot is the PC startup process that verifies the OS kernel's digital signature, ensuring that only trusted software boots. The correct answer is 3).

Explanation:

The part of the PC startup process that verifies the digital signature of the OS kernel is Secure Boot. Secure Boot is a security standard developed by members of the PC industry to ensure that a device boots using only software that is trusted by the Original Equipment Manufacturer (OEM).

The firmware checks the signature of each piece of boot software, including the UEFI firmware drivers (option ROMs), EFI applications, and the operating system. If the signatures are valid, the PC boots, and the firmware gives control to the operating system.

Measured Boot takes this process a step further by measuring each component of the boot process and storing this measurement in a secure place to ensure that the boot process hasn't been tampered with. Trusted Boot takes over after Secure Boot and checks the rest of the operating system.