wolfBoot - Open Source Secure Boot and Remote Firmware Updates in Safety-critical Embedded Systems

Explore an open-source secure bootloader designed for safety-critical embedded systems in this conference talk. Delve into wolfBoot, a highly portable solution developed based on RFC 9019 recommendations, focusing on reducing attack surfaces and mitigating various threats, including glitches and fault injections. Learn how this bootloader, initially created for ARM Cortex-M microcontrollers, has been successfully adapted to multiple architectures such as RISC-V, ARM Cortex-A, PowerPC, x86, and Intel TigerLake. Discover the importance of secure boot in modern embedded systems requiring frequent and reliable firmware updates. Understand how wolfBoot utilizes wolfCrypt for implementing cryptography algorithms, with components certified for use in DO-178C systems up to DAL-A. Examine the design principles of wolfBoot, including predictable execution flows, interrupt-free bootloader stage, absence of dynamic memory allocation, and low line count, making it suitable for safety-critical domains.