Attending this event?
October 31 - November 1 - Co-Located Events
October 28-30 - Conference
Lyon Convention Centre - Lyon, France
More information for Open Source Summit + Embedded Linux Conference Europe 2019
Wednesday, October 30 • 11:30 - 12:05
Under Lock & Key: Using Hardware Protected Keys with the Linux Crypto API - Gilad, Arm

Sign up or log in to save this to your schedule and see who's attending!

The Linux Crypto API which provides potentially hardware accelerated cryptographic services to the Linux kernel and user space programs running under it, has a little known but extremely useful feature hidden away in the bowls of this under documented mechanism: the ability to perform cryptographic operations with keys which are locked away in a hardware vault and are not accessible for reading by software running on the main CPU.

This feature, introduced silently (possibly too silently) by IBM for use with their s390 mainframes in 2016, has since been adopted for use in embedded systems by the author when compatible hardware is presented and has the potential to provide a critical layer of security for secret keys in these complicated times haunted by the spectre of speculative execution side channel attacks.

The presentation will explain the feature in depth, explain how to tell if your system of choice supports it, show case how to use the feature and some of the gotchas involved.

Wednesday October 30, 2019 11:30 - 12:05
Forum 1
Feedback form isn't open yet.