Tools & Components

Tools and components for embedded development that make your life as a developer more efficient, fun and stress-free. Logic Technology offers only high-quality embedded software- and hardware tools and components.

View all tools
Bootloaders, UEFI BIOS and OpenBMC Boundary Scan Testing Code Coverage Coding Standards Communication Protocols and Stacks Computer Modules Connectors Data Management Debuggers and Trace Dependency Structure Matrix – DSM Development Kits Device Programmers File Systems IDEs IoT and Edge device security Model Driven Software Engineering RTOS Real-Time Operating systems Software Quality Tools Static Code Analysis Storyboard 9.0 TBsafe Test and Burn-In Sockets Traceability and Certification UI Graphical Interface Software Unit Testing
Gemini_Generated_Image_w1h752w1h752w1h7
Home » Tools » emBoot-Secure

emBoot-Secure

emBoot-Secure is SEGGER’s Cyber Resilience Act-compliant solution for secure and verifiable firmware updates on embedded devices. This end-to-end approach protects embedded devices against unauthorized firmware modifications, intellectual property theft, and device cloning. It ensures that only authentic, manufacturer-approved firmware is installed, using a public-key cryptographic architecture that keeps the private signing key protected at all times. In the context of the EU Cyber Resilience Act (CRA), secure updateability is a core requirement for modern embedded systems. emBoot-Secure provides a robust foundation for meeting these regulatory demands by protecting devices throughout their entire lifecycle, from production to long-term operation in the field.

Our brands

Our brands

Related articles

NEW – SEGGER Launches emBoot-Secure: A Drop-In Solution for CRA-Compliant Firmware Updates

With the Cyber Resilience Act approaching, secure firmware updates are no longer optional. Discover how SEGGER’s emBoot-Secure provides a ready-made, CRA-compliant answer. This new solution ensures only manufacturer-signed code enters...

Read more

The Top 5 Vulnerabilities in Embedded Software and How to Prevent Them

Read more

Why continuous monitoring for vulnerabilities is essential in embedded systems

Read more

SEGGER Flasher BitStreamer Brings Universal FPGA Programming to In-System Flashers

Read more

PRESS RELEASE – McObject Launches eXtremeDB/rt 2.0: Breakthrough Persistent Hard Real-Time Database System Now Available to Logic Technology Clients

Read more

Key features

Secure firmware authenticity through digital signatures

All firmware updates are digitally signed using modern cryptographic algorithms. Devices verify these signatures before installation to ensure integrity and block unauthorized modifications.

Protected update packages with compression and encryption

Compressed firmware updates minimize transfer sizes and storage needs. Integrated encryption protects the content from inspection or reverse engineering across any delivery channel.

Seamless integration into production workflows

emBoot-Secure integrates smoothly into existing build and release processes without disruption. The Signature Server acts as a dedicated hardware component that securely manages private keys and signing operations.

Use cases

Secure firmware updates for consumer devices

emBoot-Secure uses cryptographically secure algorithms instead of simple checksums to detect manipulated firmware. The bootloader verifies firmware integrity before execution and will not start modified or unauthorized firmware. Optionally, a recovery firmware can be installed automatically if manipulation is detected, depending on the customer configuration.

Firmware updates themselves are not fetched by the bootloader. Update delivery is handled by the application software. Once a valid update package is provided to the bootloader, it is securely installed during the next restart.

Secure firmware updates in industrial environments

emBoot-Secure enables reliable firmware updates on devices with limited or no internet connectivity. This is particularly valuable in industrial systems with closed networks, long operating lifetimes, or strict security policies.

Firmware updates can be distributed using customer-defined methods that require physical access, such as USB sticks or SD cards. emBoot-Secure ensures that only authenticated firmware is installed, supporting secure and controlled update processes while maintaining the reliability of industrial equipment.

How emBoot-Secure works

emBoot-Secure follows a complete, end-to-end workflow for secure firmware updates. The process includes cryptographic signing, compression, optional encryption, and reliable installation on the device, integrating smoothly into development, production, and field-update environments.

Key generation

A public–private key pair is created using either the SEGGER Signature Server or SEGGER KeyGen as part of the initial setup.

SEGGER Signature Server (recommended)

The private key is generated and stored securely on the Signature Server. It never leaves this controlled environment, ensuring maximum protection and simplifying compliance with modern security requirements.

SEGGER KeyGen

The key pair is generated on a local PC, giving full local control. The generated private key can later be imported into a SEGGER Signature Server to benefit from its advanced security features. A secure backup of the key can be stored in a safe, for example in a bank.

Is your embedded software aligned with the upcoming CRA requirements?

Request your free scan here

Signing and creating the update package (Firmware Packager)

The Firmware Packager prepares the firmware update package in a single, controlled step. It computes a cryptographic hash of the firmware and sends it to the SEGGER Signature Server. The server generates the digital signature using the securely stored private key and returns it to the Firmware Packager.

The Firmware Packager then creates the final update package, optionally compressing and encrypting the firmware. The result is a compact and authenticated update file that is ready for distribution. Throughout the process, the private key remains protected on the Signature Server.

Firmware transfer

The update package is delivered to the embedded device using any customer-supported transport channel, such as Wi-Fi, Bluetooth, Ethernet, USB, SD card, or CAN.

The application on the device receives the update and stores it in non-volatile memory until it is processed by the bootloader during a restart.

Firmware update

The emBoot-Secure bootloader manages the entire update process on the device. Its behavior depends on whether an update package is present.

When an update package is available:

When an update package is available, the emBoot-Secure bootloader decrypts and decompresses the content if required, checks the firmware signature and version, and installs the update. The update package may be retained so it can be reused if the installed firmware becomes corrupted. If the version is unchanged, the bootloader will not reinstall the firmware.

When no update package is available:

If no update package is present, the bootloader verifies the signature of the existing firmware and, if required, can restore a recovery image before starting the verified firmware.

This mechanism ensures that devices always run authenticated firmware and remain secure and operational at all times.

Supported algorithms

SignatureRSA up to 8192 bits, ECDSA up to 521 bits (secp521r1)
HashSHA 1/256/384/512
EncryptionAES-128 .. 256
CompressionSMASH-2, LZMA
Gevorg Melikdjanjan

Gevorg Melikdjanjan

Security | Reliability | Data Solutions

Licensing

If you are interested in emBoot-Secure, please contact me to discuss your requirements.

Schedule a meeting Chat now