Session Abstract

A discussion on proposed adoption of UEFI secure boot and capsule update mechanisms in conjunction with u-boot FIT and ATF root-of trust on a high security Linux system.
- What benefits does adding UEFI secure boot to the mix bring ?
- What benefits does adding UEFI capsule update bring ?
- EFI stub booting ?
- Is grub required ?
- Does the UEFI secure boot method bring additional security over straight u-boot FIT image signing
- Does capsule update provide the right path to isolate user-space Linux from low-level device specific update logic ?

Session Speakers

Bryan O'Donoghue

Software engineer (Linaro)

Embedded developer, Linux, u-boot, zephyr, ATF, OP-TEE.
Linaro member services.

SAN19-105 - Integrating UEFI services with ATF and u-boot FIT on mbed Linux

Session Abstract

Session Speakers

Bryan O'Donoghue

Software engineer (Linaro)

Recent Posts

LTD20-404 LoRa Meets Zephyr

LTD20-403 Update on LAVA Testing for bare metal systems

LTD20-402 Power Management on Zephyr

Other Posts

SFO15-TR3 : Upstreaming 201

A Functional Open GPU Upon Arm - SFO17-215

BKK16-503: Undefined Behavior and Compiler Optimizations – Why Your Program Stopped Working With A Newer Compiler

BoF: Device Tree and Secure Firmware BoF - SFO17-310

HKG15-306 : Introducing Aster - a tool for remote GUI testing on AOSP / Build system modifications to ease working with other AOSP projects