As digitalisation continues to advance, the number of industrial IoT devices is also growing. As more devices provide users with more and more information, the focus is shifting to more efficient data transmission, more effective processing and higher levels of security.
The security of an IoT device can be secured in different ways at different points in the operational process, but it is logical that not only the method chosen but also the time of intervention is relevant for the security process. The earlier you try to secure your system, the harder it is to compromise your device. The most appropriate moment is therefore the moment when the device is powered on and the moment it is booting. The Secure Boot is part of the UEFI (Unified Extensible Firmware Interface) 2.3.1 Errata C (or higher) specification.
During the secure boot process, the device makes sure that it is running only manufacturer-approved firmware and software, leaving no room for potentially malicious code to run.
At secure boot process, the special processor checks the bootloader, its digital signature and the key used to sign it against intrusion-protected ROM, and the boot process only runs if the signatures are matching. The bootloader follows the same process to load the device firmware.
This sequence of checks is the chain of trust. Any break in this chain, i.e. lack of signature verification, will result in a failure of the bootload process.
For Intelliport, "industrial" is not just an empty commercial buzzword, we truly want to provide solutions that deliver value to industrial applications. The new generation of our routers, designed with our proprietary secure boot capable processor module, provides a higher level of security for our partners.