You're reading from The Embedded Linux Security Handbook Fortify your embedded Linux systems from design to deployment

Product type Paperback

Published in Apr 2025

Publisher Packt

ISBN-13 9781835885642

Length 278 pages

Edition 1st Edition

Tools

Linux

Concepts

Embedded Systems

Author (1):

Matt St. Onge

View More author details

Table of Contents (20) Chapters

Preface

1. Part 1:Introduction to Embedded Systems and Secure Design FREE CHAPTER

2. Chapter 1: Welcome to the Cyber Security Landscape

3. Chapter 2: Security Starts at the Design Table

4. Chapter 3: Applying Design Requirements Criteria – Hardware Selection

5. Chapter 4: Applying Design Requirements Criteria – the Operating System

6. Part 2: Design Components

7. Chapter 5: Basic Needs in My Build Chain

8. Chapter 6: Disk Encryption

9. Chapter 7: The Trusted Platform Module

10. Chapter 8: Boot, BIOS, and Firmware Security

11. Chapter 9: Image-Based Deployments

12. Chapter 10: Childproofing the Solution: Protection from the End-User and Their Environment

13. Part 3: The Build Chain, Appliance Lifecycle, and Continuous Improvement

14. Chapter 11: Knowing the Threat Landscape – Staying Informed

15. Chapter 12: Are My Devices’ Communications and Interactions Secure?

16. Chapter 13: Applying Government Security Standards – System Hardening

17. Chapter 14: Customer and Community Feedback Loops

18. Index

Why subscribe?

19. Other Books You May Enjoy

Implementing LUKS on an appliance with automated keys

A key point to keep at the forefront of your thought process in the implementation of any security factor in an appliance solution is your end-user experience. This book was created to help you and your team create a secure but usable embedded Linux system.

Depending on what your solution is and how it is utilized by the end-users, it is paramount to prevent the need for those end-users to have to enter keys every time a system is turned on. Firstly, that appliance may not even have a console or a keyboard attached. Secondly, forcing the end-user to manually enter such a key will ultimately result in them writing the key down on a note somewhere taped to the machine or elsewhere in clear view in the workplace. Making the end-user enter the key passphrases should be avoided if at all feasible.

Here’s an example screenshot of how you may be prompted for a passphrase before the boot sequence can continue:

...