This time we have a relatively simple and effective hardening measure that may prevent big headaches: kernel module signing.
Continue reading...Thinking Outside the (Linux) Box: Security Considerations From Human Actors
This text is a short summary of my presentation at the embedded Linux conference, and talks about humans and cybersecurity.
Continue reading...Yocto Hardening: Multi-Factor Authentication
In this blog post, I’ll show how to integrate Google Authenticator into a Yocto system to enhance the security of remote login flows.
Continue reading...Introducing Sulka, the Hardened Yocto Distro
For years I have been telling myself that it’s a bit too much for a single person to try and manage a distro, but now I think it’s time to give it a go.
Continue reading...Adding SPI & AXI to NEORV32 Design
In the previous part we created an FPGA design that runs NEORV32 and is capable of booting Zephyr. Let’s improve it by adding an SPI block and external memory.
Continue reading...Running Zephyr RTOS on NEORV32 Soft Processor
The last time I was playing with an FPGA I connected Basys 3 and Raspberry Pi. It’s time to increase the difficulty a bit and create our SoC using FPGA.
Continue reading...Configuration with PACKAGECONFIG in Yocto
The OpenEmbedded build system used by the Yocto Project has a powerful feature that is slightly hidden in the documentation: package configuration.
Continue reading...Linux & FPGA, The Perfect Match?
FPGA, one of life’s big mysteries. Let’s combine Raspberry Pi 5 and Basys 3 boards and see how we can demonstrate communication between these two devices.
Continue reading...Encrypting In Yocto With fscryptctl
In this blog text I’ll briefly cover how to use fscryptctl to encrypt and decrypt directories in an embedded Linux system.
Continue reading...Yocto Hardening: File System Encryption with fscrypt
Let’s continue encryption with the second part and move on to file system encryption.
Continue reading...
