diff --git a/debian/changelog b/debian/changelog
index 0c22f57..fa73d1d 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -3,6 +3,7 @@ shim (15+1533136590.3beb971-3) UNRELEASED; urgency=medium
   [ Philipp Hahn ]
   * debian/rules: fixing permissions no longer required
   * debian/rules: Disable ephemeral key on Debian.
+  * Rename binary package to 'shim-unsigned'
 
  -- Luca Boccassi <bluca@debian.org>  Fri, 15 Feb 2019 19:50:10 +0000
 
diff --git a/debian/control b/debian/control
index 259bc09..58538d5 100644
--- a/debian/control
+++ b/debian/control
@@ -7,9 +7,11 @@ Build-Depends: debhelper (>= 9), gnu-efi (>= 3.0u), sbsigntool, openssl, libelf-
 Vcs-Browser: https://salsa.debian.org/vorlon/shim
 Vcs-Git: https://salsa.debian.org/vorlon/shim.git
 
-Package: shim
+Package: shim-unsigned
 Architecture: amd64 arm64 i386
 Depends: ${shlibs:Depends}, ${misc:Depends}
+Conflicts: shim (<< 15+1533136590.3beb971-3~),
+Replaces: shim (<< 15+1533136590.3beb971-3~),
 Description: boot loader to chain-load signed boot loaders under Secure Boot
  This package provides a minimalist boot loader which allows verifying
  signatures of other UEFI binaries against either the Secure Boot DB/DBX or
diff --git a/debian/shim.install b/debian/shim-unsigned.install
similarity index 100%
rename from debian/shim.install
rename to debian/shim-unsigned.install