Where does Windows 10 pull the Windows UEFI CA 2023 from?

StudentAdmin 65 Reputation points
2024-12-28T20:11:25.5733333+00:00

Background

I am following this KB article from microsoft: https://support.microsoft.com/en-us/topic/kb5025885-how-to-manage-the-windows-boot-manager-revocations-for-secure-boot-changes-associated-with-cve-2023-24932-41a975df-beb2-40c1-99a3-b3ff139f832d

 

I have run the command:

reg add HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Secureboot /v AvailableUpdates /t REG_DWORD /d 0x40 /f

 

And verified the 2023 cert is installed after restarting:

[System.Text.Encoding]::ASCII.GetString((Get-SecureBootUEFI db).bytes) -match 'Windows UEFI CA 2023'

 

Question

Where is the certificate coming from when I update this setting? I tried logging my network traffic but can't isolate the request. I'm assuming this queries a Microsoft URL, but which one? And how does that work?

Windows 10
Windows 10
A Microsoft operating system that runs on personal computers and tablets.
11,959 questions
Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,975 questions
PowerShell
PowerShell
A family of Microsoft task automation and configuration management frameworks consisting of a command-line shell and associated scripting language.
2,733 questions
0 comments No comments
{count} votes

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.