A good writeup and worth it for the links alone. Does a good job of mentioning existing tools and previous talks on the topic.<p>The chipsec tool looks pretty useful for evaluating your setup: <a href="https://github.com/chipsec/chipsec" rel="nofollow">https://github.com/chipsec/chipsec</a><p>Also the UEFI parser <a href="https://github.com/theopolis/uefi-firmware-parser" rel="nofollow">https://github.com/theopolis/uefi-firmware-parser</a>
looks to be really useful if you want to dig deeper.