SecBoot — lightweight secure boot mechanism for Linux-based embedded systems on FPGAs

Peter Rouget 1 Benoit Badrignans Pascal Benoit 1 Lionel Torres 1
1 ADAC - ADAptive Computing
LIRMM - Laboratoire d'Informatique de Robotique et de Microélectronique de Montpellier
Abstract : In recent years, the need in security for embedded devices and data centers has increased sharply. The possible consequences of attacks on these equipments make them privileged targets. In these fields, FPGA are increasingly used because of their flexibility and constantly decreasing power consumption and cost: they can embed several hard/soft processors running Linux enhancing system integration. This paper discusses the security issues related to operating system boot security on FPGAs. We show how the software early boot stages can be protected using FPGA built-in security mechanisms and user logic. We consider that external memories can be tampered by software attacks or board level attacks. By using open source elements and standard tools, we present and implement a lightweight solution. We show that the dynamic reconfiguration has nearly no impact on usable resources of the FPGA matrix at the end of the boot process.
Complete list of metadatas

https://hal-lirmm.ccsd.cnrs.fr/lirmm-02081037
Contributor : Isabelle Gouat <>
Submitted on : Wednesday, March 27, 2019 - 11:12:43 AM
Last modification on : Thursday, March 28, 2019 - 3:25:38 AM
Long-term archiving on : Friday, June 28, 2019 - 1:38:55 PM

Identifiers

Collections

Citation

Peter Rouget, Benoit Badrignans, Pascal Benoit, Lionel Torres. SecBoot — lightweight secure boot mechanism for Linux-based embedded systems on FPGAs. ReCoSoC: Reconfigurable Communication-centric Systems-on-Chip, Jul 2017, Madrid, Spain. pp.1-5, ⟨10.1109/ReCoSoC.2017.8016144⟩. ⟨lirmm-02081037⟩

Share

Metrics

Record views

60

Files downloads

59