💾 Archived View for gemini.bortzmeyer.org › fosdem › event-11395.gmi captured on 2021-12-17 at 13:26:06. Gemini links have been rewritten to link to archived content
-=-=-=-=-=-=-
Maciej Pijanowski
Type devroom
Starts on day 1 (2021-02-06) at 14:20 (Brussels time, UTC+1) in room Hardware trusted (duration 00:25)
Matrix room #hardware trusted:fosdem.org
In the ARM world, Secure Boot is typically a BootROM feature, which allows
for verification of the loaded binaries (firmware, bootloader, Linux kernel)
prior executing it. The main idea is to prevent the untrusted code from running
on our platform. The general approach is similar across vendors, but there is
no standardization in this area.
During this talk we will review the Secure Boot features in ARM SoCs from some
of the most popular vendors. Not only will we analyze the Secure Boot presence
or its features, but we will also focus on the tools and documentation
availability. It is a known fact that often such documentation requires a
signed NDA with an SoC vendor, which makes it difficult to use by regular
users.