Timesys Security Services: Bring more secure products to market

Ensure your device is not running tampered software by verifying its authenticity before execution. Establish software authenticity all the way from the bootloader to user applications. Our secure boot services help implement:

• Verified bootloader (NXP i.MX / QorIQ, Qualcomm Snapdragon, TI Sitara, Atmel SAMA5, Xilinx Zynq and more)
• Kernel verification (FIT image, SoC specific mechanisms)
• Root filesystem verification (dm-verity, IMA/EVM, FIT image)
• NXP EdgeLock SE050 integration

You can protect IP and sensitive user information by encrypting data/software. It is also critical to protect the key used for encryption using a secure storage mechanism. Additionally, software that handles confidential data should run from within a hardware/software-isolated environment.

We provide solutions and services that span:

• Anti-cloning (IP and Data Protection)
• Key Management and secure key storage
• Data protection using encryption — In use, in motion, and at rest
• Trusted Platform Module (TPM)
• Trusted Execution Environment (TEE) using Arm TrustZone and OP-TEE
• Device identity and authentication

By performing a risk analysis, our audit services can help you determine what potential threats your system might encounter and what should be secured. Timesys’ security audits:

• Provide a detailed review of packages and default system configuration
• Run & analyze reports from audit and scanning tools
• Provide you with an end-to end-review of system security
• Provide you with a risk management and recovery plan

You need to choose system security configurations wisely to reduce the attack surface. Typically, development focus is on the application with little consideration for system security. Our hardening service focuses on:

• Access & authorization
• Vulnerability
• Logging of all user access
• Logging of access level changes by any program
• Disable unused services and ports
• Security-oriented configurations for packages and kernel