Protecting your firmware authenticity with CycurHSM

An overview of advanced secure boot concepts

Streamed on
30 10월 2020
50 minutes
Raimund Stampa, Lead Product Manager Embedded Security Software

Startup performance, updateability, certificates and asymmetric cryptography there are numerous challenges for securing your ECU's boot sequence and a textbook "secure boot" approach rarely fits all the needs.

In this webinar we revisit CycurHSM's capabilities to create sophisticated security designs that you can tailor to your needs. The presented novel solutions are close to their start of production and showcase the challenges in current designs. We will investigate why the bootloader is a major attack surface and what trade-offs are typical for modern ECUs. Based on this, we will discuss the below mentioned boot concepts.


A short revisiting of CycurHSM's standard trusted boot and important design decisions to support a fast and secure ECU startup
The "TABS feature" – combining secure boot with certificate-based security for an autonomous authenticity update in order to eliminate the largest attack surface in the bootmanager
Showcase: Secure and safe boot in an airbag system – how to realize stringent startup timings in a safety critical ECU for Airbag control


ISO 9001:2015