June 26-30, 2023
Prague, Czech Republic + Virtual
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Embedded Open Source Summit 2023 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Central European Summer Time (UTC/GMT +2). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

Back To Schedule
Wednesday, June 28 • 11:25 - 12:05
Boot to Cloud Security Considerations with IoT - Kevin Townsend, Linaro

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Designing secure IoT systems for resource-constrained embedded systems is a challenge, not because of the limited resources available, but because security needs to be considered from an end-to-end perspective. This means planning for: - A secure boot and firmware update process - The secure flow of data through the system - How do I know the data is trustworthy and hasn't been tampered with? - How do I know that this comes from the device it claims to? - How can I limit visibility of sensitive data? - Reliable device authentication - Secret management - Secure connectivity to public/private cloud servers Embedded developers can no longer limit themselves to one specific silo, and need to have basic skills and an understanding of the entire end-to-end, boot-to-cloud and security landscape to make the right design choices to produce a minimally secure system. This presentation tries to lay down some of those key requirements and design choices, and makes suggestions about best practices to follow based on open source software and open standards. This includes generating device-bound, storage-free private keys and UUIDs, mutual TLS, how to encode and transmit data securely and reliably, and bootstrap and X.509 certificate management requirements.

avatar for Kevin Townsend

Kevin Townsend

Technical Lead, Linaro
Embedded systems engineer specialising in 32-bit ARM-based design and development, embedded security, and wireless technology (BLE, 802.15.4, etc.). Maintainer for Zephyr RTOS of: AArch32, TF-M Integration, and author of zscilib (Zephyr Scientific Computing Library). Long time contributor... Read More →

Wednesday June 28, 2023 11:25 - 12:05 CEST
Conference Hall (Level 4)
  Zephyr Project Developer Summit