
Building Trust - Use Cases and Implementation of TPM 2.0 in Embedded Linux Systems
- Anna-Lena Marx
- Embedded , Conferences
- May 16, 2025
Artwork by: Sparkelle (Yan) — Licensed under Creative Commons BY-SA 4.0
As embedded systems become increasingly interconnected, the demand for robust platform security and integrity has surged. Trusted Platform Modules (TPM), currently in version 2.0, are becoming increasingly beneficial for enhancing security in embedded systems. TPMs provide hardware-backed mechanisms for critical functions such as random number generation, cryptographic key generation, key binding and data sealing.
This presentation will explore the capabilities of TPM 2.0, focusing on several practical use cases, including:
- Providing a unique and persistent serial number for device identification.
- Supporting secure boot mechanisms to establish a reliable chain of trust.
- Encrypting user data without the need for user passwords.
- Managing application credentials securely.
Additionally, we will discuss the integration of TPM 2.0 within Yocto-based embedded systems and present strategies for automated provisioning, highlighting how these elements work together to enhance overall system security.
Presented at
- Embedded Recipes 2025, Nice, France
Related Posts

Yocto Vendor BSPs - The good, the bad, the ugly
- Anna-Lena Marx
- November 6, 2025
- Embedded , Conferences
Vendor Board Support Packages (BSPs) promise a quick start, but we all know the reality: a tangled mess of demo apps, weird custom tools, and an old, unmaintained kernel. This is a nightmare for products that need to live longer than a demo on the developer’s desk.
In this talk, we get our hands dirty. Forget the polished slides; we’re going to take a live, no-holds-barred look at some real-world vendor BSPs to see the common pain points firsthand. From there, we’ll discuss what we actually need from a BSP for a production device and explore the tipping point where setting up your own clean foundation becomes the smarter choice for building products that are meant to last.
Read Post
USB Updates - Challenges, Approaches and Practical Tips
- Anna-Lena Marx
- February 24, 2024
- Embedded , Conferences
Over-the-air updates have established themselves as the standard for networked devices, but the effort involved in operating the server side is not always commensurate with the benefits. In such cases, the supposedly simple and quick solution of implementing updates via USB is often chosen. But is it really always that uncomplicated? What considerations are necessary to implement USB updates effectively?
This presentation provides an insight into the challenges of USB updates and presents solutions and practical tips for successful implementation. Find out which aspects need to be considered in order to optimize USB updates and ensure a smooth process
Read Post
How a modern Yocto setup could look like
- Anna-Lena Marx
- November 20, 2022
- Embedded , Conferences
In 2015, we built a sophisticated meeting room information system based on Android Things as a student project. As Android Things was deprecated in 2021, we started to use our Yocto Project experience to develop a maintainable, future proof embedded system.
When setting up a new project from scratch, we focused on proper solutions for
- a maintainable, well supported and patchable build environment for the embedded systems
- version control, reproducible builds and continuous integration
- license management
- a secure and stable update mechanism on image base and
- managing releases The talk aims to show how we build a system that matches our requirements using the Yocto Project, KAS, Gitlab CI, and Mender.io. Besides, we will have a short outlook to the application built in Flutter.
Presented at
- Yocto Project Summit 2022.11, virtual, 2022
- buildingIoT, Munich, 2023
Download original slides (Yocto Project Summit) Download updated slides (buildingIoT)
Read Post