Doc Searls: Microlith.

A fundamental building block for client-side content security is a secure operating system. … This stepping-stone to a secure operating system is sometimes called “Secure Boot.” If secure boot cannot be assured, then whatever rights management system the secure OS provides, the computer can always be booted into an insecure operating system as a step to compromise it.

That’s from the MSFT patent on Digital Rights Management.