Which concept gathers secure metrics to validate the boot process in an attestation report?

• A. Secure Boot prevents unwanted processes from executing during the boot operation.
• B. Self-Encrypting Drive encrypts data at rest.
• C. Trusted Boot/Measured Boot gathers secure metrics to validate the boot process in an attestation report.
• D. UEBA provides automated identification of suspicious activity by user accounts and computer hosts.

Answer: (C)

The mechanism that gathers secure metrics to validate the boot process in an attestation report is Trusted Boot/Measured Boot. During the boot sequence, these approaches collect measurements—hashes of the firmware, bootloader, and OS components—along the boot chain. Those measurements are securely stored (typically in a trusted hardware root like a TPM) and compiled into an attestation report that a remote verifier can check to confirm the system started with unmodified, trusted code. This contrasts with Secure Boot, which focuses on preventing unsigned or tampered code from executing but doesn’t produce the measured attestation record itself. Self-Encrypting Drive is about protecting data at rest, and UEBA analyzes user and host behavior, not boot integrity.