Name: Verified Boot on Chrome OS and How to do it yourself - Simon Glass, Google
Start: 2013-10-24T14:00:00+0100
End: 2013-10-24T14:50:00+0100

Back To Schedule

Verified Boot on Chrome OS and How to do it yourself - Simon Glass, Google

Chrome OS uses a first stage read-only firmware and second-stage updatable firmware. The updatable firmware is signed and contains kernel keys and a dm-verify hash, so that the firmware, Linux kernel and root filesystem are all protected against corruption and attack. This system is described and discussed. As part of Google's upstream efforts in U-Boot, a generalized secure boot system has been developed and released with U-Boot 2013.07. This implementation uses the FIT format, which collects together images, such as kernels, device tree, RAM disks. Support is provided for TPMs (Trust Platform Module), RSA-based signing and verificaiton, and hashing with hardware acceleration. This system is also described and discussed, along with the specific steps needed to implement it in your designs.

Speakers

Simon Glass

Software Engineering Manager, Google Inc

Simon Glass has worked in embedded systems for many years, at ARM, Bluewater Systems (which he founded) and Google. In ChromeOS, Simon is responsible for driving adoption of Open Source firmware components in the industry ecosystem. He is a primary contributor to U-Boot and custodian... Read More →

Thursday October 24, 2013 2:00pm - 2:50pm BST
Tinto

Conference Session

Embedded Linux Conference Europe

Simon Glass

Attendees (0)

Embedded Linux Conference Europe

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Simon Glass

Attendees (0)