Secure Boot – Concepts and Tradeoffs

1 GOALS
How can you be certain that the software running on your product has not been corrupted? Secure boot provides a mechanism to ensure that only authorized software will run on your device.
This seminar will provide a basic understanding of how secure boot functions and the security benefits that it offers. The costs and consequences of secure boot are then examined along with security advantages that can be derived from secure boot at run-time.

2 CONTENTS
The seminar will start by examining the concept of a digital signature and how this can be added to a binary image. The idea of a chain-of-trust is introduced along with the concept of a root-of-trust and the requisite support from the SoC.
The overall startup sequence is then examined, from the bootloader, through the OS to the application code. This will lead into an examination of the overall performance consequences of secure boot.

Some ideas for run-time monitoring deriving from the assumptions of secure boot are explored. We then show some different security models that can be used and how this leads to the question of the size of your key-ring.

Finally, the consequences for software update are examined.

3 TARGET AUDIENCE
This seminar is intended for system architects and managers who need to understand the consequences and trade-offs of secure boot.

4 PREREQUISITES
An understanding of the process of an embedded system is assumed. Some minimal knowledge of standard security mechanisms (public/private key encryption, hashing, etc) is assumed.

5 EXAMINATION
No examination

6 TRAINING RETURN
After completing this seminar, the participants will understand how secure boot works. They will be aware of the trade-offs involved and will be prepared to choose intelligently from amongst the possible alternatives.

7 WHY KNÜVENER MACKERT?
With Knüvener Mackert GmbH this course is being taught by an expert with the experience from 35 years of real-time software development in embedded systems, spanning both the medical and the automotive industries.

8 INHOUSE TRAINING
This seminar can also be offered in the form of in-house training at the location of your choice.

Allgemeine Informationen

Dauer: 1 Tag
Uhrzeit: ca. 9:30 – 17.00 Uhr
Sprache: Deutsch oder Englisch
Trainer: Gerald Harris, Profile LinkedIn

Ermäßigungen:
10% Frühbucherrabatt auf Trainingsgebühr (bei Buchung bis 8 Wochen vor Trainingsbeginn)
10% Team-Ermäßigung auf Trainingsgebühr (bei mehr als drei Teilnehmern pro Buchung)
20% Kombination aus Frühbucherrabatt und Teamermäßigung (siehe oben)

Training-ID: 15.003.

Termine

Training auch als Inhouse-Training möglich

Stuttgart, Germany – auf Anfrage

Preis netto € 590,00
Frühbucher Discount: 10%
Teamdiscount: 10%
Sprache: deutsch oder englisch
Status: auf Anfrage
Training ID: 15.003.

Auszug aus dem Trainingsmaterial

Jeder der Teilnehmer erhält einen der weltbesten ASPICE Guides.