Another important thing to realize about EFI is that it also contemplates enabling chipset features that will trap certain OS operations to an EFI-based control system running in System Management Mode. In other words, under EFI, there is no guarantee that the OS owns the platform. Accesses to IDE I/O addresses, or certain memory addresses, can be trapped to EFI code and potentially examined and modified or aborted. Many see this as an effort to build a "DRM BIOS".
I don't see any advantage when it would be encrypted or DRM would be used.
As a garage needs to do tests they'll be able to change values. If you get the keys credentials from a garage one can do the same.
It should just be impossible either change values for certain devices like brakes when the car is running or they should be reset when a diagnostic device is detached.
This new item wouldn't be an issue in most industries.
If an employee of a certain car producer drives to work with the car of the competitor no one wouldn't even be bothered. It's a fact that this happens.
"Here's something to think about: How come you never see a headline like `Psychic Wins Lottery.'" -- Comedian Jay Leno