Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Embedded Linux Conference (ELC) [clear filter]
Tuesday, October 27

16:15 GMT

Using the TPM - It's Not Rocket Science (Anymore) - Johannes Holland & Peter Huewe, Infineon Technologies AG
Nowadays, virtually all consumer PCs/laptops contain a TPM2.0 security chip, the Trusted Platform Module. Moreover, the TPM finds its way into more and more modern embedded devices. But what is the TPM and how can we use it on Linux? The TPM has the potential to enhance security in a variety of use cases ranging from SSH, VPN, disk encryption, and more. Since it is so powerful, it may be hard to use at times. But do not fret - the tpm2-software project, especially its new TPM Software Stack (TSS) Feature API (FAPI) library, enables anyone to use the TPM. This talk gives an introduction on how to use the TPM the easy way, using recent contributions to the TPM ecosystem like the TSS FAPI. After a brief overview of the involved hard- and software, this talk will dive into how to get started with the TPM and show how it can be used to perform fundamental security tasks. Afterwards, recent additions like the TPM PKCS11 middleware and the OpenSSL engine will be presented - enabling TPM integration, perhaps without writing a single line of code. In the end, the TPM open source ecosystem will be discussed, and how to become part of it. Want to start hacking? We got you.

avatar for Peter Huewe

Peter Huewe

Principal Engineer, Infineon Technologies AG
Embedded Security Software Developer @ Infineon Technologies AG developing the next generation of Trusted Platform Modules (TPM) and ePassports. Former TPM Subystem Maintainer.OpenSource and Linux enthusiast for 15+ years - advocating the use and support for open source within my... Read More →
avatar for Johannes Holland

Johannes Holland

Embedded Software Developer, Infineon Technologies AG
@Infineon Technologies AG in Augsburg, Germany.Industrial Security (M.Sc.)@University of Applied Sciences Augsburg.Working on Embedded Security Solutions.Developing next-gen TPMs and ePassports.Contributor to the TPM Software Stack and Ecosystem.Open Source and Linux Enthusiast.

Tuesday October 27, 2020 16:15 - 17:05 GMT
ELC Theater
  Embedded Linux Conference (ELC), Security

18:30 GMT

OP-TEE is Ready: Let's Use It! - Rouven Czerwinski, Pengutronix e.K.
OP-TEE for i.MX6 SoCs is production ready, so we finally have a fully mainline way to use TrustZone on a widely available platform. So what are the scenarios where we it can increase security or allow new features? This talk will present the current state of OP-TEE from an upstream perspective on i.MX6 SoCs and show two different Trusted Applications (TAs) which provide secure data storage or TPM functionality. One of the presented applications will be the PKCS#11 TA which is currently being upstreamed into the mainline OP-TEE project. In conjunction with the OpenSSL PKCS#11 engine, it can be used to store client certificate data which can not be extracted from the device. The other application will be the Microsoft firmware TPM, which is provided as an out-of-tree TA with an upstream Linux kernel driver. It is meant as a replacement for conventional hardware TPMs and provides a tighter coupling to the chosen SoC. Furthermore this talk will highlight the necessary steps to actually secure OP-TEE on your chosen SoC, using the i.MX6 platform as an example.

avatar for Rouven Czerwinski

Rouven Czerwinski

Embedded Software Developer, Pengutronix e.K.
Rouven works with security on embedded systems, specializing on i.MX6 processors.

Tuesday October 27, 2020 18:30 - 19:20 GMT
ELC Theater
  Embedded Linux Conference (ELC), Security
Wednesday, October 28

12:00 GMT

Issues with Open Source License Compliance in Consumer Electronics - Tim Bird, Sony
Complying with the myriad licenses for software that is used in a modern consumer electronics device can be a complicated process. In this talk, Tim will discuss lessons learned from license compliance activities with Sony consumer electronics products. Tim will describe best practices for things like offers for source, software distribution, and rebuildability of provided source. The GPL license requires ""complete and corresponding source"". Tim will explain what this means, and how that interacts with things like secure product lockdown. The history of the GPL v2 license, and intent of Linux kernel community leaders will be presented. Attendees should gain a better understanding of compliance requirements, and what issues to watch out for in managing the source code and requests for source for their embedded Linux products.

avatar for Tim Bird

Tim Bird

Principal Software Engineer, Sony
Tim Bird is a Principal Software Engineer for Sony Corporation, where he helps Sony use Linux and other open source software in their products. Tim is the maintainer of the Fuego test framework, and is involved in various groups in the Linux Foundation, including LF Board of Directors... Read More →

Wednesday October 28, 2020 12:00 - 12:50 GMT
ELC Theater

13:00 GMT

Share System Resources on Multi-Processor System - Lionel Debieve, STMicroelectronics
New SoCs often embed multiple heterogeneous processors. Buses, memories or peripherals managed by the SoC could be allocated to different processors. Shared system resources, such as clocks or power controllers, might be critical in the system and need to be controlled by a high level privileged and trusted entity. Whatever the hardware solution used, software drivers must remain agnostics. The talk will present the shared resources constraints and how the STM32MP1 explores and extends the ARM System Control and Management Interface as solution for such shared resources management.


Lionel Debieve

Software Security developer, STMICROELECTRONICS
Security developer in STMicroelectronics, focus on MPU projects (STM32MP1), I'm fully engaged in the software boot chain development (Trusted firmware/OP-TEE based) and security constraint for IOT.

Wednesday October 28, 2020 13:00 - 13:50 GMT
ELC Theater
  Embedded Linux Conference (ELC), Security

Twitter Feed