Existing Arm secure boot solutions assume a vertical model, where all firmware and software is signed by a single entity. This is inherently incompatible with datacenter security, where multiple entities deliver silicon, firmware, software and hardware to the supply chain. Hardware security modules such as PROT or TPM may be used but require end-to-end physical control of the server. Single Domain Secure Boot improves Arm server datacenter security by providing multiple root keys in a single eFuse root of trust on processor. In this work, we present the components, architecture, and operation of Single Domain Secure Boot.
Derek is a Staff Engineer at Cloudflare and has over 17 years of experience in designing security frameworks at scale. His main focus is on research and development within hardware infrastructure and edge security.
He currently holds multiple patents in the fields of security, key management, and blockchain.