The TCG PC Client Specific Platform Firmware Profile Specification, v1.06-rev52 when this issue is being opened, states:
- A list of secure boot variables that are logged into PCR7, in an order.
- And also points out that the order is actually relevant:
- Before executing any code not cryptographically authenticated as being provided by the Platform
Manufacturer, the Platform Manufacturer firmware MUST measure the Secure Boot Variables as defined
above, in the order listed using the defined event types.
So the firmware should respect that, no matter which is the cloud vendor serving it.
The TCG PC Client Specific Platform Firmware Profile Specification, v1.06-rev52 when this issue is being opened, states:
So the firmware should respect that, no matter which is the cloud vendor serving it.