Video Converter
Audio Converter
Image Converter
PDF Converter
File Compressor
mcuboot attestation

MCUBoot Attestation David Brown What is MCUboot MCUboot Secure - PowerPoint PPT Presentation

Aug 15, 2023 •11 likes •91 views

MCUBoot Attestation David Brown What is MCUboot MCUboot Secure bootloader Its History Manages signed images Handles updates, maintaining security Currently, custom manifest (SUIT maybe some day) What is TF-M Reference

  1. MCUBoot Attestation David Brown

  2. What is MCUboot

  3. MCUboot • Secure bootloader • Its History • Manages signed images • Handles updates, maintaining security • Currently, custom manifest (SUIT maybe some day)

  4. What is TF-M • Reference implementation of PSA • Implements secure and non-secure environments • Does many things

  5. Upstream & TF-M MCUboot • TF-M started with a fork of MCUboot • Convergence is underway • Goal is for MCUboot to be a submodule

  6. Claims from MCUboot • Handful of claims come from MCUboot • Versions of images • Hashes and keys involved in these images • State of boot • More are described in the TF-M code than implemented • More may be useful (e.g. how MCUboot itself is configured)

  7. Keys and provisioning • Different keys for different purposes • MCUboot has one or more public keys • Currently compiled into the code, and immutable • Other images are signed with these keys • Attestation needs private keys to sign token • Device probably needs other keys • Root certs for secure communication • Private keys to authenticate with services

  8. Provisioning keys • MCUboot public key currently hardcoded • Private keys: something has to be done at the factory • Key management • For private key, how to manage public key? • Talking with industry, people seem to normally use X.509 certs to demonstrate device identity

Recommend

BEHAVIORAL HEALTH AGENCY (BHA)- LICENSING, ATTESTATION, AND DEEMING Attestation for Substance

BEHAVIORAL HEALTH AGENCY (BHA)- LICENSING, ATTESTATION, AND DEEMING Attestation for Substance

BEHAVIORAL HEALTH AGENCY (BHA)- LICENSING, ATTESTATION, AND DEEMING Attestation for Substance Use Disorder (SUD) Services DOH agrees that an attestation process for SUD services should be an option The attestation process for SUD

474 views • 8 slides
Attestation (RATS/EAT) Overview Laurence Lundblade February 2020 Entity Attestation Good

Attestation (RATS/EAT) Overview Laurence Lundblade February 2020 Entity Attestation Good

Attestation (RATS/EAT) Overview Laurence Lundblade February 2020 Entity Attestation Good Devices Token Chip & device manufacturer Banking risk engine IoT backend Device ID (e.g. serial number) Boot state, debug state

959 views • 34 slides
MCUboot: A Secure Bootloader For Microcontroller-class Devices Aditj Hilbert

MCUboot: A Secure Bootloader For Microcontroller-class Devices Aditj Hilbert

MCUboot: A Secure Bootloader For Microcontroller-class Devices Aditj Hilbert <aditj@runtjme.io> Szymon Janc <szymon.janc@codecoup.pl> September 25, 2017 IoT challenges Small, memory-constrained, low-cost Example hardware:

960 views • 10 slides
SC Self Audit Attestation & SQMD Plan Affirmation Elaine Siegel Market Services Policy Lead

SC Self Audit Attestation & SQMD Plan Affirmation Elaine Siegel Market Services Policy Lead

SC Self Audit Attestation & SQMD Plan Affirmation Elaine Siegel Market Services Policy Lead Stakeholder Web Conference August 23, 2018 1:00 PM 2:00 PM (PDT) CAISO Public CAISO Public SC Self Audit Attestation & SQMD Plan

570 views • 12 slides
Direct Anonymous Attestation Revisited Jan Camenisch IBM Research Zurich Joint work with

Direct Anonymous Attestation Revisited Jan Camenisch IBM Research Zurich Joint work with

Direct Anonymous Attestation Revisited Jan Camenisch IBM Research Zurich Joint work with Ernie Brickell, Liqun Chen, Manu Drivers, Anja Lehmann. jca@zurich.ibm.com, @JanCamenisch, ibm.biz/jancamenisch Direct Anonymous Attestation What

659 views • 31 slides
A Minimalist Approach to Remote Attestation Aurlien Francillon Eurecom Quan Nguyen, Kasper B.

A Minimalist Approach to Remote Attestation Aurlien Francillon Eurecom Quan Nguyen, Kasper B.

A Minimalist Approach to Remote Attestation Aurlien Francillon Eurecom Quan Nguyen, Kasper B. Rasmussen, Gene Tsudik UC Irvine Overview Motivation Definition of Remote Attestation From Definition to Properties From Properties

454 views • 17 slides
PSA APIs An overview Attestation API 1.0.1 we are in the process of dropping a new

PSA APIs An overview Attestation API 1.0.1 we are in the process of dropping a new

PSA APIs An overview Attestation API 1.0.1 we are in the process of dropping a new release which allows signing using symmetric attestation keys (using COSE Mac0) Fully documented in ARM IHI 0085 TF-M master is slightly behind the

549 views • 17 slides
Eugene, Oregon Attestation I have no financial interest in any product or services mentioned

Eugene, Oregon Attestation I have no financial interest in any product or services mentioned

Philip McKinney, DPM Oregon Podiatry Clinic Eugene, Oregon Attestation I have no financial interest in any product or services mentioned in this presentation. When ordering films of the foot and/or ankle, films should be preformed

1.27k views • 39 slides
7.1 TEMPORARY INSCRIPTION ATTESTATION What is TIA? Controlling TIA: Every foreign vessel under

7.1 TEMPORARY INSCRIPTION ATTESTATION What is TIA? Controlling TIA: Every foreign vessel under

7.1 TEMPORARY INSCRIPTION ATTESTATION What is TIA? Controlling TIA: Every foreign vessel under contract to operate on BJW shall be subscribed on Inspection Management System SISGEVI. Expire Date of the TIA: The expiring date of the TIA

337 views • 17 slides
ALINE Attestation that Online Content Existed By Charline Montial Master Semester Project at DEDIS

ALINE Attestation that Online Content Existed By Charline Montial Master Semester Project at DEDIS

ALINE Attestation that Online Content Existed By Charline Montial Master Semester Project at DEDIS Lab Fall 2019 Supervised by Nomien Kocher Under the responsibility of Prof. Bryan Alexander Ford 1 Motivation 1. Motivation 2. Aim of the

389 views • 10 slides
Measuring Semantic Integrity for Remote Attestation Fabrizio Baiardi 1 Diego Cilea 2 Daniele

Measuring Semantic Integrity for Remote Attestation Fabrizio Baiardi 1 Diego Cilea 2 Daniele

Introduction Proposed Solution: VIMS Conclusion Measuring Semantic Integrity for Remote Attestation Fabrizio Baiardi 1 Diego Cilea 2 Daniele Sgandurra 2 Francesco Ceccarelli 3 1 Polo G. Marconi - La Spezia, Universit di Pisa, Italy 2

380 views • 33 slides
-1- 1 CONTENTS 1. INTRODUCTION 2. HISTORY 3. PRODUCTS 4. ATTESTATION 5. CUSTOMERS 6. VISION

-1- 1 CONTENTS 1. INTRODUCTION 2. HISTORY 3. PRODUCTS 4. ATTESTATION 5. CUSTOMERS 6. VISION

-1- 1 CONTENTS 1. INTRODUCTION 2. HISTORY 3. PRODUCTS 4. ATTESTATION 5. CUSTOMERS 6. VISION 7. PICTURES -2- 2 1.INTRODUCE COMPANY NAME : HY ROBOTICS CO., LTD ( SOUTH KOREA ) HYROBOTICS CORP ( USA ) PRESIDENT : KANG, DAE

367 views • 10 slides
Workers' Compensation Attestation Enhancement Webinar for Corporate Users and Professional

Workers' Compensation Attestation Enhancement Webinar for Corporate Users and Professional

Workers' Compensation Attestation Enhancement Webinar for Corporate Users and Professional Administrators November 6, 2019 Presentation Topics Background Information Purpose of Enhancement Registering as a Professional Administrator

467 views • 44 slides
BARRETT: BlockchAin Regulated REmote aTTestation Michail Bampatsikos, Christoforos Ntantogian,

BARRETT: BlockchAin Regulated REmote aTTestation Michail Bampatsikos, Christoforos Ntantogian,

BARRETT: BlockchAin Regulated REmote aTTestation Michail Bampatsikos, Christoforos Ntantogian, Christos Xenakis, Stelios C. A. Thomopoulos ACKNOWLEDGEMENT: The research of the authors M. Bampatsikos and S. C. A. Thomopoulos is supported by Stavros

187 views • 15 slides
Distributed Attestation for Device Swarms in IoTs Under the Guidance of Prof. Vinay Ribeiro and

Distributed Attestation for Device Swarms in IoTs Under the Guidance of Prof. Vinay Ribeiro and

Distributed Attestation for Device Swarms in IoTs Under the Guidance of Prof. Vinay Ribeiro and Prof. Kolin Paul Samuel Wedaj(2014CSZ8390) Background: 2 The term Internet of things was first coined in 1999 A hybrid network of

602 views • 25 slides
The New HIV Drug Assistance Program Self-Attestation Form The SHORT Form! April 16 th, 20 19

The New HIV Drug Assistance Program Self-Attestation Form The SHORT Form! April 16 th, 20 19

1 The New HIV Drug Assistance Program Self-Attestation Form The SHORT Form! April 16 th, 20 19 Dennis P. Canty Coordinator of HDAP and Federal Grants Massachusetts Department of Public Health Ayda Kifle IDDAP Program Coordinator

535 views • 36 slides
EGI-InSPIRE GridCertLib Shibboleth authentication for X.509 certificates and Grid proxies

EGI-InSPIRE GridCertLib Shibboleth authentication for X.509 certificates and Grid proxies

EGI-InSPIRE GridCertLib Shibboleth authentication for X.509 certificates and Grid proxies Sergio Maffioletti <sergio.maffioletti@gc3.uzh.ch> Grid Computing Competence Centre, University of Zurich http://www.gc3.uzh.ch/ GridCertLib EGI

386 views • 26 slides
XCache deployment experience What is XCache? Basically an xrootd proxy server that also stores

XCache deployment experience What is XCache? Basically an xrootd proxy server that also stores

XCache deployment experience What is XCache? Basically an xrootd proxy server that also stores data passing through it. On next access it delivers data from disk. It needs: a) Dedicated node b) Local storage c) IP d) Secrets (to

390 views • 9 slides
List of content Energy efficient thermal packaging 1. Introduction to thermal issues 2.

List of content Energy efficient thermal packaging 1. Introduction to thermal issues 2.

Chalmers University of Technology Chalmers University of Technology List of content Energy efficient thermal packaging 1. Introduction to thermal issues 2. Introduction to electronics packaging Johan Liu 3. Solutions to achieve energy

241 views • 11 slides
Towards understanding todays and tomorrow's scheduling challenges in HPC systems Gonzalo P.

Towards understanding todays and tomorrow's scheduling challenges in HPC systems Gonzalo P.

Towards understanding todays and tomorrow's scheduling challenges in HPC systems Gonzalo P. Rodrigo - gonzalo@cs.umu.se Erik Elmroth elmroth@cs.umu.se Lavanya Ramakrishnan lramakrishnan@lbl.gov P-O stberg p-o@cs.umu.se

553 views • 54 slides
Secure remote management with virtualization Daniel P. Berrang <berrange@redhat.com>

Secure remote management with virtualization Daniel P. Berrang <berrange@redhat.com>

Secure remote management with virtualization Daniel P. Berrang <berrange@redhat.com> libvirt: Background API for management of hypervisors Community (Red Hat, Fujitsu, Bull) Isolates apps from HV specific APIs Driver

610 views • 11 slides
RSA-PSS Provable Secure RSA Signatures and their Implementation Overview What is RSA-PSS?

RSA-PSS Provable Secure RSA Signatures and their Implementation Overview What is RSA-PSS?

RSA-PSS Provable Secure RSA Signatures and their Implementation Overview What is RSA-PSS? Why RSA-PSS? Comparing original and standardized PSS Status of Protocols, Standards and Imple- mentations RSA-PSS in X.509

724 views • 19 slides
SSL, X.509, HTTPS How to configure your HTTPS server Hanno Bck, http://hboeck.de/ HTTPS

SSL, X.509, HTTPS How to configure your HTTPS server Hanno Bck, http://hboeck.de/ HTTPS

SSL, X.509, HTTPS How to configure your HTTPS server Hanno Bck, http://hboeck.de/ HTTPS It's complex Two protocols involving crypto X.509 (for the certificates) and SSL/TLS (for the data transport) Many things can go wrong

538 views • 22 slides
XWHEP 5.7.5 : XtremWeb by High Energy Physics jeudi 15 octobre 2009 XWHEP Introduction

XWHEP 5.7.5 : XtremWeb by High Energy Physics jeudi 15 octobre 2009 XWHEP Introduction

XWHEP 5.7.5 : XtremWeb by High Energy Physics jeudi 15 octobre 2009 XWHEP Introduction Architecture Rights Objects management Compilation, installation Coordinator service Worker service Client service

916 views • 62 slides

More recommend

Explore More Topics

Stay informed with curated content and fresh updates.

animals pets art culture automotive transportation business finance computer internet construction architecture education-career electronics communication

Logo Sambuz

Unleash a World of Digital Possibilities—Browse, Share, and Explore Content Without Boundaries

Useful Links

About Us Privacy Services FAQ's Contact

Newsletter

Stay Informed & Inspired—Subscribe for the Latest Updates, Tips, and Exclusive Content Directly to Your Inbox.

Mail Us

mail@sambuz.com

2026 SAMBUZ, All right reserved.