Getting Started

Follow Us in

⟵ ⟶

RidgeRun Platform Security Manual

Table of Contents [Sticky]

• Introduction
  • General Overview
  • Basic Concepts
• Tutorial: From Fresh to Secure
• Platform Security
  • Root of Trust
  • Secure Boot
  • Trusted Execution Environment(TEE)
  • Trusted Platform Module(TPM)
  • Measured Boot and Integrity Measurement Architecture (IMA)
  • Disk Encryption
  • Over-the-Air updates (OTA)
  • Kiosk Modes
• Getting Started
  • Platform Support
  • Secure Boot
    • NVIDIA Jetson
  • Trusted Execution Environment(TEE)
    • NVIDIA Jetson
  • Disk Encryption
    • NVIDIA Jetson
  • Over-the-Air
    • Main providers
    • NVIDIA Jetson - Mender
  • Trusted Platform Module (TPM)
    • NVIDIA Jetson
  • Kiosk Modes
• Contact Us
• Sponsor your Favorite Feature

The Getting Started section of the RidgeRun Platform Security Manual serves as a practical entry point for developers aiming to implement robust security measures on embedded Linux platforms. It provides step-by-step guidance on configuring essential security features, ensuring that systems are protected against unauthorized access and potential vulnerabilities.

This section builds upon the foundational concepts introduced earlier in the manual, offering detailed instructions and best practices for deploying security mechanisms such as Secure Boot, Trusted Execution Environments (TEE), Disk Encryption, Over-the-Air (OTA) updates, Trusted Platform Modules (TPM), and Kiosk Modes. By following these guidelines, developers can establish a secure baseline for their systems, tailored to the specific requirements of their hardware platforms.

Key components covered in this section include:

• Platform Support: An overview of supported hardware platforms, detailing the compatibility and implementation nuances of various security features.
• Secure Boot: Instructions on setting up Secure Boot to ensure that only authenticated software is executed during the boot process, protecting the system from malicious code.
• Trusted Execution Environment (TEE): Guidance on configuring a TEE to isolate sensitive operations, enhancing the overall security posture of the system.
• Disk Encryption: Steps to encrypt storage devices, safeguarding data at rest from unauthorized access.
• Over-the-Air (OTA) Updates: Strategies for implementing secure and reliable OTA update mechanisms, ensuring systems remain up-to-date without compromising security.
• Trusted Platform Module (TPM): Information on integrating TPMs to provide hardware-based security functions, such as secure key storage and cryptographic operations.
• Kiosk Modes: Approaches to configuring systems in kiosk mode, restricting user interactions to predefined applications, and enhancing system integrity.

By systematically addressing each of these areas, the Getting Started section empowers developers to build secure, resilient embedded systems. It serves as a roadmap for transitioning from basic system setups to fully secured platforms, aligning with industry best practices and compliance requirements.

⟵ ⟶