How do I allow cross-signed kernel drivers in Windows 10 version 1607 with secure boot enabled?

drivers windows-registry secure-boot windows-10-v1607 digital-signature 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\CI\Policy]
"UpgradedSystem"=dword:00000001
  • https://www.geoffchappell.com/notes/security/whqlsettings/index.htm
  • https://forums.mydigitallife.net/threads/windows-10-anniversary-update-digital-signature-question.69970/#post-1272392

Both the blogpost and the forum post corroborate each other. I have added the following registry value on a Windows 10 version 1909 machine that had been upgraded from 1903 (therefore, the restrictions from 1607 apply).

Lo and behold...it worked. Previously, the driver had installed itself and appeared in the Device Manager, albeit with the oft-described "Code 52" warning. Now that error is gone.

I'm a Linux user and not a Windows guru. My previous (naïve) experiences have shown me that modifying the registry can lead to issues, so I don't really know what sort of externalities will follow from adding this registry value. I'll defer instead to Geoff Chappell's blogpost, as he seems to know what he's writing about; it seems like adding this registry value is, at least to date, harmless.

Related

Why is there a write speed difference between dd, cp, rsync and macOS Finder to a SMB3 drive?
How can I extract fonts from a PDF file?
Outlook conversation view and categories
foobar2000 with Google Music?
FFMPEG - Non-monotonous DTS
Add select next match in Notepad++ (like Ctrl + D in Sublime Text)
USB Audio Device Preventing Sleep (Windows 10)
Chrome auto-fill saved passwords is very slow
Is it possible in Windows 10 to prevent an opening application from stealing focus?
Make Google Chrome's address bar prefer page titles to domain names when offering completions?
Is there a free way to monitor a serial port on Windows 7 x64?
Desktop applications are unable to launch my browser in Windows 8