SlideShare a Scribd company logo

OpenHours Bootloaders and Secure Firmware

96Boards, profile picture
96Boards

The document discusses bootloaders and trusted firmware, focusing on the differences between Cortex A and Cortex M processors. It emphasizes the importance of establishing a root of trust through a chain of executed code to ensure secure operation. Additionally, it details the structure and responsibilities of various bootloader stages for both types of processors.

Technology
1 of 12
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
Bootloaders and Trusted Firmware David Brown 2019 April 24
Overview ● Signature introduction ● Two worlds: Cortex A and Cortex M ● Trusting your code: The root of trust ● Secure vs Non-secure ● Bootloaders, trusted firmware, and secure code, oh my
A Digital Signature Image SHA256 Image Hash 32 bytes EC Private Key ECDSA Sign Signature 32 bytes
Verify a Signature Image SHA256 Image Hash 32 bytes EC Public Key ECDSA Verify Signature 32 bytes Good?
Cortex A vs Cortex M Cortex A: ● “Big” CPUs ● Typically have: ○ GBs of RAM ○ GBs of storage: SSD/MMC/NAND ○ GHz CPU ○ Multiple cores common ● Think Raspberry Pi, Phones, 96Boards, Android, Linux, etc Cortex M: ● “Small” CPUs ● Typically have: ○ KBs of RAM ○ MBs of ROM ○ 10-100s of MHz ○ Usually 1 core, some 2 ● Think IoT: light bulbs, water meters ● Key here is to reduce cost and power consumption
Root of trust ● How do we trust the code that is running? ● Chain of trust from first executed code on the system
Chain of Trust Internal boot code Bootloader Trusted Firmware Non-secure Operating System Trusted OS Application Secure Non-Secure Optional
Internal boot code Bootloader Trusted Firmware Non-secure Operating System Trusted OS Application Secure Non-secure
Secure, Non-secure Interaction ● Strong memory protection ● Memory protection even of DMA ● Well defined and restricted communication ● Limits code that needs to be trusted
Bootloaders, Cortex-A ● Code resides in file or partition in a large device ● Each stage responsible for verifying the next state ○ BL1: Rom loader in SoC ○ BL2: Trusted firmware ○ BL3-1: Trusted OS/Platform ○ BL3-3: Non-trusted: U-Boot/UEFI ○ : Non-secure OS: Linux ○ : Apps
Bootloaders: Cortex-M ● Lives in a single flash space ● May execute right out of flash ● Fixed partitions and rigid upgrades ● Boot order: ○ Possible on-SoC init ROM ○ MCUboot: Validates 2 images ○ TF-M: Secure application ○ Application
Thank you Join Linaro to accelerate deployment of your Arm- based solutions through collaboration contact@linaro.org

More Related Content

PDF
LAS16 100 K1 - Keynote George Grey
96Boards
 
PDF
LAS16-100K1: Welcome Keynote
Linaro
 
PPTX
BLE Talk
programmarchy
 
PPTX
Cat info mgt
Isle of Man College
 
PDF
Iot development from prototype to production
Mender.io
 
PPSX
Computer specifications.ppsx
mnm Lastopop
 
PDF
2 system-unit.ppt-compatibility-mode
EL Institute
 
PPTX
An Introduction to AV1 - The Next-Gen Royalty-Free Codec From the Alliance fo...
Tanya Vernitsky
 
LAS16 100 K1 - Keynote George Grey
96Boards
 
LAS16-100K1: Welcome Keynote
Linaro
 
BLE Talk
programmarchy
 
Cat info mgt
Isle of Man College
 
Iot development from prototype to production
Mender.io
 
Computer specifications.ppsx
mnm Lastopop
 
2 system-unit.ppt-compatibility-mode
EL Institute
 
An Introduction to AV1 - The Next-Gen Royalty-Free Codec From the Alliance fo...
Tanya Vernitsky
 

Similar to OpenHours Bootloaders and Secure Firmware (20)

PPTX
An Introduction to AV1 - The Next-Gen Royalty-Free Codec From the Alliance fo...
Bitmovin Inc
 
PPSX
09. Memory, Storage (RAM, Cache, HDD, ODD, SSD, Flashdrives)
Akhila Dakshina
 
PDF
LAS16 109 - The status quo and the future of 96Boards
96Boards
 
PDF
LAS16-109: LAS16-109: The status quo and the future of 96Boards
Linaro
 
PDF
HKG15: Opening Keynote - George Grey, Linaro CEO
Linaro
 
PDF
Caching for Performance Masterclass: The In-Memory Datastore
ScyllaDB
 
PDF
IoT Development from Prototype to Production
Mender.io
 
PDF
Feasibility of Security in Micro-Controllers
ardiri
 
PDF
BKK16-110 A Gentle Introduction to Trusted Execution and OP-TEE
Linaro
 
PDF
BKK16-110~---3892hnfi2r8ru94jofmcw8ujd.pdf
satyabratmallaBujarb
 
PPTX
Light Weight Cryptography for IOT.pptx
DineshBoobalan
 
PDF
Internet Of Things: Hands on: YOW! night
Andy Gelme
 
PDF
DevSecCon Boston 2018: Busted computing by Conor Walsh
DevSecCon
 
PPTX
HKG18-223 - Trusted FirmwareM: Trusted boot
Linaro
 
PDF
Hardware hacking
Tavish Naruka
 
PDF
9 semiconductor memory
Usha Mehta
 
PPTX
Compaq
Andys Cortees
 
PPT
Peter Gutmann Presentation - CSO Perspectives Roadshow Auckland 9th Mar 2015
CSO_Presentations
 
PDF
Reverse engineering
Daniel Stenberg
 
PDF
Mob modcon 2015-android rom cooking tutorial
Ron Munitz
 
An Introduction to AV1 - The Next-Gen Royalty-Free Codec From the Alliance fo...
Bitmovin Inc
 
09. Memory, Storage (RAM, Cache, HDD, ODD, SSD, Flashdrives)
Akhila Dakshina
 
LAS16 109 - The status quo and the future of 96Boards
96Boards
 
LAS16-109: LAS16-109: The status quo and the future of 96Boards
Linaro
 
HKG15: Opening Keynote - George Grey, Linaro CEO
Linaro
 
Caching for Performance Masterclass: The In-Memory Datastore
ScyllaDB
 
IoT Development from Prototype to Production
Mender.io
 
Feasibility of Security in Micro-Controllers
ardiri
 
BKK16-110 A Gentle Introduction to Trusted Execution and OP-TEE
Linaro
 
BKK16-110~---3892hnfi2r8ru94jofmcw8ujd.pdf
satyabratmallaBujarb
 
Light Weight Cryptography for IOT.pptx
DineshBoobalan
 
Internet Of Things: Hands on: YOW! night
Andy Gelme
 
DevSecCon Boston 2018: Busted computing by Conor Walsh
DevSecCon
 
HKG18-223 - Trusted FirmwareM: Trusted boot
Linaro
 
Hardware hacking
Tavish Naruka
 
9 semiconductor memory
Usha Mehta
 
Compaq
Andys Cortees
 
Peter Gutmann Presentation - CSO Perspectives Roadshow Auckland 9th Mar 2015
CSO_Presentations
 
Reverse engineering
Daniel Stenberg
 
Mob modcon 2015-android rom cooking tutorial
Ron Munitz
 
Ad

Recently uploaded (20)

PDF
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PPTX
Machine Learning_overview_presentation.pptx
kondavamsidharreddy2
 
PDF
A comparative analysis of optical character recognition models for extracting...
IAESIJAI
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Machine Learning_overview_presentation.pptx
kondavamsidharreddy2
 
A comparative analysis of optical character recognition models for extracting...
IAESIJAI
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Encapsulation theory and applications.pdf
gurumoop
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Approach and Philosophy of On baking technology
30anthuong17
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
Ad

OpenHours Bootloaders and Secure Firmware

  • 2. Overview ● Signature introduction ● Two worlds: Cortex A and Cortex M ● Trusting your code: The root of trust ● Secure vs Non-secure ● Bootloaders, trusted firmware, and secure code, oh my
  • 3. A Digital Signature Image SHA256 Image Hash 32 bytes EC Private Key ECDSA Sign Signature 32 bytes
  • 4. Verify a Signature Image SHA256 Image Hash 32 bytes EC Public Key ECDSA Verify Signature 32 bytes Good?
  • 5. Cortex A vs Cortex M Cortex A: ● “Big” CPUs ● Typically have: ○ GBs of RAM ○ GBs of storage: SSD/MMC/NAND ○ GHz CPU ○ Multiple cores common ● Think Raspberry Pi, Phones, 96Boards, Android, Linux, etc Cortex M: ● “Small” CPUs ● Typically have: ○ KBs of RAM ○ MBs of ROM ○ 10-100s of MHz ○ Usually 1 core, some 2 ● Think IoT: light bulbs, water meters ● Key here is to reduce cost and power consumption
  • 6. Root of trust ● How do we trust the code that is running? ● Chain of trust from first executed code on the system
  • 7. Chain of Trust Internal boot code Bootloader Trusted Firmware Non-secure Operating System Trusted OS Application Secure Non-Secure Optional
  • 8. Internal boot code Bootloader Trusted Firmware Non-secure Operating System Trusted OS Application Secure Non-secure
  • 9. Secure, Non-secure Interaction ● Strong memory protection ● Memory protection even of DMA ● Well defined and restricted communication ● Limits code that needs to be trusted
  • 10. Bootloaders, Cortex-A ● Code resides in file or partition in a large device ● Each stage responsible for verifying the next state ○ BL1: Rom loader in SoC ○ BL2: Trusted firmware ○ BL3-1: Trusted OS/Platform ○ BL3-3: Non-trusted: U-Boot/UEFI ○ : Non-secure OS: Linux ○ : Apps
  • 11. Bootloaders: Cortex-M ● Lives in a single flash space ● May execute right out of flash ● Fixed partitions and rigid upgrades ● Boot order: ○ Possible on-SoC init ROM ○ MCUboot: Validates 2 images ○ TF-M: Secure application ○ Application
  • 12. Thank you Join Linaro to accelerate deployment of your Arm- based solutions through collaboration contact@linaro.org