In the ARM world, Secure Boot is typically a BootROM feature, which allows for verification of the loaded binaries (firmware, bootloader, Linux kernel) before executing it. The main idea is to prevent untrusted code from running on our platform. The general approach is similar across vendors, but this area has no standardization.

This is the 2nd edition of such an overview. During the presentation, we will check the status of the Secure Boot feature on ARM SoCs shown a year ago, and then we will expand this by describing examples on Rockchip and Mediatek based boards. The knowledge contained in this talk should help developers integrate Secure Boot into their platforms, contributing to increased security in the world of embedded devices.