Another article that fails to provide all the details. Secure boot is only supported if: https://docs.microsoft.com/en-us/wi...protection/secure-the-windows-10-boot-process
I honestly didn't know that rootkits were still a problem on Win 10. So seems like M$ will have to come up with something to give anti-malware tools the ability to spot malicious behavior from drivers. Perhaps virtualization can play a role in this.