Secure Boot – Concepts and Tradeoffs
How can you be certain that the software running on your product has not been corrupted? Secure boot provides a mechanism to ensure that only authorized software will run on your device.
This seminar will provide a basic understanding of how secure boot functions and the security benefits that it offers. The costs and consequences of secure boot are then examined along with security advantages that can be derived from secure boot at run-time.
The seminar will start by examining the concept of a digital signature and how this can be added to a binary image. The idea of a chain-of-trust is introduced along with the concept of a root-of-trust and the requisite support from the SoC.
The overall startup sequence is then examined, from the bootloader, through the OS to the application code. This will lead into an examination of the overall performance consequences of secure boot.
Some ideas for run-time monitoring deriving from the assumptions of secure boot are explored. We then show some different security models that can be used and how this leads to the question of the size of your key-ring.
Finally, the consequences for software update are examined.
3 TARGET AUDIENCE
This seminar is intended for system architects and managers who need to understand the consequences and trade-offs of secure boot.
An understanding of the process of an embedded system is assumed. Some minimal knowledge of standard security mechanisms (public/private key encryption, hashing, etc) is assumed.
6 TRAINING RETURN
After completing this seminar, the participants will understand how secure boot works. They will be aware of the trade-offs involved and will be prepared to choose intelligently from amongst the possible alternatives.
7 WHY KNÜVENER MACKERT?
With Knüvener Mackert GmbH this course is being taught by an expert with the experience from 35 years of real-time software development in embedded systems, spanning both the medical and the automotive industries.
8 INHOUSE TRAINING
This seminar can also be offered in the form of in-house training at the location of your choice.
Duration: 1 day
Time: 9:30 – 17.00 Uhr
Language: german or english
Trainer: Gerald Harris, Profile LinkedIn
10% early bird discount on the training fee (till 8 weeks before start)
10% team discount on the training fee (more than 3 participants)
20% early bird team discount on the training fee (both above)
Stuttgart, Germany – on request
Early-bird discount: 10%
Status: on request
Training ID: 15.003.
Excerpt from the training material
Each participant receives one of the world’s best ASPICE guides.