For certain deployments, it will be great to have secure boot support
## Notes
* https://www.kernel.org/doc/html/v4.15/admin-guide/module-signing.html
* https://techcommunity.microsoft.com/t5/hardware-dev-center/updated-uefi-signing-requirements/ba-p/1062916
* https://github.com/Xdavius/debian-sb-kernel-signing
* https://github.com/rhuefi/qemu-ovmf-secureboot
* https://blog.lazy-evaluation.net/posts/linux/switching-to-secureboot.html