Mathieu Dupré
Mathieu is a senior free software consultant and has a wide knowledge of Linux system, from low layers such as Kernel space to higher layers like containers / virtualization. He has valuable experience in Linux system security for both embedded systems and servers.
Mathieu is one of the main contributors of the SEAPATH open-source project supported by the LFEnergy foundation.
Session
This talk explores how to establish a complete secure boot chain on ARM-based embedded platforms using Yocto, combining SoC-level security mechanisms with Linux-level integrity protection. Through the example of NXP’s i.MX family, we’ll show how to leverage features such as HABv4, ARM TrustZone, and OP-TEE to create a verified, encrypted, and trusted execution environment from the first instruction to the root filesystem.