Explore embedded Linux security fundamentals in this comprehensive conference talk from Embedded Linux Conference North America 2020. Delve into essential security concepts, threat modeling techniques like STRIDE and DREAD, and practical threat model examples. Learn about secure boot concepts, their implementation on i.MX6 processors, and the intricacies of code and data encryption. Discover various methods for private key storage, including secure elements and external devices. Gain insights into secure coding practices, static code analysis, runtime protections, and fuzzing tools. Examine Linux security features such as permissions, access control, capabilities, and security modules. Investigate application sandboxing, Linux containers, and their security implications. Understand Trusted Execution Environment (TEE) implementations, update system security challenges, and strategies. Explore network security principles and the concept of defense in depth. Conclude with general security rules and best practices for designing secure embedded Linux systems. Read more