Safeguarding your data is critical to running your business and protecting intellectual property as well as the privacy of employees and customers. The news is secure usb rife with reports of data being lost or stolen from laptops left in cars, USB flash drives dropped in airports, and unencrypted CDs and DVDs lost in the mail.
If disabling Secure Boot isn’t an option for you, the next easiest route to success is to choose a Linux distribution that fully supports Secure Boot. If you’re using Ubuntu >= 12.04.2 (or any of its official flavors”) or Linux Mint >=16, you can rest assured these distributions support Secure Boot because both distributions (and their usb lock flavors”) share a legitimate Intel UEFI/SecureBoot code. As well, both enterprise-ready distributions Red Hat and SUSE have paid the piper to gain access to an official key. With these particular distributions, Secure Boot should not be an issue. I’ve booted plenty of Secure Boot-enabled machines with Ubuntu and had nary an issue.
Blocking unauthorized USB devices is only a part of the deal. usb access control makes it possible to white-list USB devices deemed safe such as printers, scanners, keyboards and mice, as well as any devices explicitly allowed by the system administrator. You’ll never again have to worry about lost or stolen USB drives if you have protected it with USB Secure. Airhead 1 and 2 (Richard Burr (R-NC) and Dianne Feinstein (D-CA)) want to reintroduce their anti-encryption bill.