Based on instructions from: https://pjones.fedorapeople.org/shim-signing-procedure.html

1. Description
 - Organization: VMware, Inc.
 - Product: Photon OS
 - Photon OS (https://vmware.github.io/photon/) is a Linux distribution being
   used by VMware customers in a clouds (vSphere, AWS) and on a bare metal.
   We use shim->grub2->Linux chain for Secure Boot support. And we do not use
   other bootloaders and kernels.
 - It does need to be signed in order to boot the Phorot OS on any device
   using UEFI CA certificate for Secure Boot.

2. Security contacts
 - Monty Ijzerman
     Staff Program Manager, Security Response
     mijzerman@vmware.com
     http://pgp.mit.edu/pks/lookup?op=vindex&search=0xC61F6A1D
 - Edward Hawkins
     Senior Security Program Manager
     ehawkins@vmware.com
     http://pgp.mit.edu/pks/lookup?op=vindex&search=0x405F7C6D
 - Kieran Boyde
     Senior Security Program Manager
     kboyde@vmware.com
     http://pgp.mit.edu/pks/lookup?op=vindex&search=0xE8FB4180
 - Praveen Singh
     Security Program Manager
     praveens@vmware.com
     http://pgp.mit.edu/pks/lookup?op=vindex&search=0x08D2BEC1

3. Shim binary filename: shimx64.efi
4. Shim release we have started with: shim-15 
   https://github.com/rhboot/shim/releases/download/15/shim-15.tar.bz2
5. No patches or changes were applied
6. Build instructions
 - Install Ubuntu server 16.04 from
   http://releases.ubuntu.com/16.04.2/ubuntu-16.04.2-server-amd64.img
 - sudo apt-get install build-essential gnu-efi
 - wget https://vmware.bintray.com/photon_shim_review/shim-15/build-shim.sh
 - wget https://vmware.bintray.com/photon_shim_review/shim-15/vmware_esx40.cer
 - ./build-shim.sh
7. build log file: build-shim.log
8. Bootloader we are using: grub2
   Vanilla version + set of patches for Secure Boot and TPM support from
   Fedora/Redhat and SUSE by: Matthew Garrett, Raymund Will, Peter Jones,
   Hans de Goede. grub2.spec file and patches are available here:
   https://github.com/vmware/photon/tree/master/SPECS/grub2
9. We are using 4.19 linux in four available flavors. From Secure Boot
   perspective they are pretty vinalla. We do not use patches to enforce
   Secure Boot other than functionality provided by upstream. Linux spec
   files configs and patches are here:
   https://github.com/vmware/photon/tree/master/SPECS/linux