1 /** @file 2 Provides a secure platform-specific method to detect physically present user. 3 4 Copyright (c) 2011 - 2012, Intel Corporation. All rights reserved.<BR> 5 This program and the accompanying materials 6 are licensed and made available under the terms and conditions of the BSD License 7 which accompanies this distribution. The full text of the license may be found at 8 http://opensource.org/licenses/bsd-license.php 9 10 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS, 11 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED. 12 13 **/ 14 15 #ifndef __PLATFORM_SECURE_LIB_H__ 16 #define __PLATFORM_SECURE_LIB_H__ 17 18 19 /** 20 21 This function provides a platform-specific method to detect whether the platform 22 is operating by a physically present user. 23 24 Programmatic changing of platform security policy (such as disable Secure Boot, 25 or switch between Standard/Custom Secure Boot mode) MUST NOT be possible during 26 Boot Services or after exiting EFI Boot Services. Only a physically present user 27 is allowed to perform these operations. 28 29 NOTE THAT: This function cannot depend on any EFI Variable Service since they are 30 not available when this function is called in AuthenticateVariable driver. 31 32 @retval TRUE The platform is operated by a physically present user. 33 @retval FALSE The platform is NOT operated by a physically present user. 34 35 **/ 36 BOOLEAN 37 EFIAPI 38 UserPhysicalPresent ( 39 VOID 40 ); 41 42 #endif 43