OP-TEE: Securing U-Boot and Linux Kernel | HCL Whitepaper

DOWNLOAD THE WHITEPAPER

This white paper explores the OP-TEE architecture design techniques to secure U-Boot and the Linux Kernel. We select Raspberry Pi 3 as the target of choice considering its prevalent ubiquitous nature. OP-TEE comprises of multiple components that relies on ARM based chips supporting TrustZone technology to offer a secure environment for applications to run.A daisy chain secure handover can be achieved using OP-TEE. Signing of both the U-Boot and Kernel image helps to secure the bootstrap process.