Add to collection(s) Add to saved
  1. No category

workingatmpc

Working at MPC Data
http://tstableford.co.uk/downloads/workingatmpc.pptx
Introduction
• Working in a team is different to at university
• Based in Trowbridge near Bath
• Tea and Coffee is free and infinite (well
nearly)
• Company events a few times a year
• Flexible work hours
• 22 days holiday
2
© 2013 BSQUARE Corporation. All rights reserved. BSQUARE is a registered trademark of BSQUARE Corporation. All other
names, product names and trade names are trademarks or registered trademarks of their respective holders.
Projects
• Linux – Radio gateway system
• Linux – BSP support for a defence
contractor
• More on the next slides
3
© 2013 BSQUARE Corporation. All rights reserved. BSQUARE is a registered trademark of BSQUARE Corporation. All other
names, product names and trade names are trademarks or registered trademarks of their respective holders.
UI Reskin For An Industrial Control
System
4
© 2013 BSQUARE Corporation. All rights reserved. BSQUARE is a registered trademark of BSQUARE Corporation. All other
names, product names and trade names are trademarks or registered trademarks of their respective holders.
Secure Boot
• Boot only authorized code on i.MX6
• Chain of trust to kernel
5
© 2013 BSQUARE Corporation. All rights reserved. BSQUARE is a registered trademark of BSQUARE Corporation. All other
names, product names and trade names are trademarks or registered trademarks of their respective holders.
Problem Breakdown
1. Create a working base
2. Burn the keys to the board, sign and verify U-Boot in non-secure mode
3. Go to closed configuration
• Burn the closed configuration fuse
• Boot U-Boot
4. Sign the kernel
• Sign the kernel image
• Modify U-Boot to authenticate the kernel
• Make sure the kernel boots
5. Lock down other code execution methods
• Disable U-Boot commands
• Secure JTAG
• Burn the fuse to stop keys being overwritten
6
© 2013 BSQUARE Corporation. All rights reserved. BSQUARE is a registered trademark of BSQUARE Corporation. All other
names, product names and trade names are trademarks or registered trademarks of their respective holders.
Signed U-Boot
7
© 2013 BSQUARE Corporation. All rights reserved. BSQUARE is a registered trademark of BSQUARE Corporation. All other
names, product names and trade names are trademarks or registered trademarks of their respective holders.
Secure Boot Process
Copy U-Boot IVT to
Internal RAM
Valid IVT?
No
Yes
Load U-Boot into
SDRAM
Process CSF
(Authenticate U-Boot)
Attempt secure serial
boot
Fail
Fail
Halt
Success
Load Kernel to
SDRAM
8
Authenticate
Kernel
© 2013 BSQUARE Corporation. All rights reserved. BSQUARE is a registered trademark of BSQUARE Corporation. All other
names, product names and trade names are trademarks or registered trademarks of their respective holders.
Boot
Success
Summary
• Chain of trust to kernel
• More lock-down for a full chain of trust
9
© 2013 BSQUARE Corporation. All rights reserved. BSQUARE is a registered trademark of BSQUARE Corporation. All other
names, product names and trade names are trademarks or registered trademarks of their respective holders.
Thank You
Tim Stableford
01225 710663 | tims@bsquare.com
Related documents
INTA Proper Use Presentation
INTA Proper Use Presentation
ASP.NET MVC
ASP.NET MVC
File - Ruby Donaldson Amey`s Master`s of Science in
File - Ruby Donaldson Amey`s Master`s of Science in
Don Berchoff
Don Berchoff
1-Acesse Marketing -Jy2Larry- English Opps-2ndChance
1-Acesse Marketing -Jy2Larry- English Opps-2ndChance
Download