designcon is part of the Informa Markets Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
April 5-7, 2022|Santa Clara Convention Center| Santa Clara, CA
Corey Minyard (Carrier Grade Architect, MontaVista Linux)
Christian Kurzke (Solutions Architect, MontaVista Linux)
Location: Ballroom C
Date: Wednesday, April 6
Time: 3:00 pm - 3:45 pm
Track: Drive World - Advanced Automotive
Format: Technical Session
Theme : Automotive, Security
Education Level: All
Pass Type: 2-Day Pass, All Access Pass
Vault Recording: TBD
Audience Level: All
Traditionally, securing update systems simply meant digitally signing the packages or installs at build time, and then verifying their integrity before installation. This time is gone. Modern attacks involve roll-back to older, vulnerable versions, or denial of service attacks that block the installation of newer fixes and updates. We also have to anticipate key compromise and other supply chain attacks.
A modern update system will detect when itâ€™s being attacked, given old data, and can handle the compromise or loss of signing keys. This talk will discuss the various attacks and present tools available for mitigating those attacks.