MAD24-325 Simple, Yocto, Secure Boot: Using new systemd features to pick all three!
Session
- Thursday, 16 May 14:55 - 15:20
- Room: Session 1 | Las Palmas I
Recent systemd releases have introduced several new features to improve secure boot and add support for use cases around “Image-Based Linux”. Yet, adoption of these features in the embedded Linux world is slow. This talk tours a couple of these features and discusses their potential to simplify common embedded or edge computing use cases. We will explore recently added secure boot components (unified kernel images, systemd-boot, systemd’s initramfs services, systemd-repart) in a Yocto environment. Some of these new components were developed for non-embedded use cases, and we will need to deploy them in slightly different scenarios. We will discuss the remaining challenges and unsolved parts. The result is a sketch towards a turn-key solution to secure user-space for embedded Linux devices – and a TODO list of what is left to be done.
Presented by
Engineer at Linaro
Erik loves to tinker with software and hardware. Taking things apart to understand the insides made him venture into embedded engineering. Before joining Linaro's Support and Solutions team he worked... View more