The expiration of Secure Boot certificates in June 2026 raises significant security concerns for many Windows users, especially those operating older hardware.
As of early Tuesday, Secure Boot has served as a critical security feature for Windows for the past 15 years. The end of certificate validity could leave numerous systems vulnerable.
Approximately 400 million Windows 10 PCs cannot upgrade to Windows 11 due to stringent hardware requirements. This situation complicates the security landscape further.
Key facts:
- Secure Boot certificates are set to expire in June 2026.
- Windows 10 support officially ends in October 2025, but an Extended Security Update program will continue until October 14, 2026.
- Windows 11 users on modern hardware should not face issues with Secure Boot certificate updates.
The latest updates from Rufus indicate problems with version 4.14. The silent installation option is currently broken, and it no longer retains certain Windows User Experience settings between sessions.
The issue with Rufus relates to bypassing hardware requirements such as TPM 2.0 and Secure Boot. Pete Batard, the app author, quickly identified the root cause, stating that leaving bypass options enabled has no negative impact on installations on systems with TPM.
Your PC isn’t going to die, but it might get a lot less safe. As of midday Tuesday, the full implications of these changes remain uncertain. Users should stay informed about updates regarding Secure Boot and its potential risks.