Authenticated Boot: Securing Industrial Computers for the Cyber Resilience Act

Authenticated Boot: Securing Industrial Computers for the Cyber Resilience Act

Protecting Industrial Systems from Firmware and Software Tampering

As industrial computers become increasingly connected, cybersecurity is now a critical requirement for embedded and industrial systems. From factory automation and robotics to energy infrastructure, transportation, and medical equipment, modern devices must protect against unauthorised access, malicious software, and firmware manipulation.

One of the key technologies helping manufacturers achieve these security goals is authenticated boot.

As part of the security requirements introduced by the Cyber Resilience Act (CRA), authenticated boot provides a foundation for ensuring that devices only run trusted software throughout the boot process.

What is Authenticated Boot?

Authenticated boot is a security mechanism that verifies the authenticity and integrity of software before allowing a device to execute it. During startup, each stage of the boot process is checked to confirm that it has been digitally signed and approved by the device manufacturer. If any software component has been modified, corrupted, or replaced with unauthorised code, the system can prevent it from running.

This creates a chain of trust, starting from a secure hardware foundation and extending through the firmware, operating system, and applications.

A typical authenticated boot process follows this sequence:

Hardware Root of Trust → Authenticated BIOS / UEFI Firmware → Verified Bootloader → Trusted Operating System → Approved Applications

By validating every stage, authenticated boot helps prevent attackers from introducing malicious firmware or software into a system.

How Does Authenticated Boot Work?

1. Hardware Root of Trust: The process begins with a trusted component built into the hardware, often stored in protected memory or supported by a security device such as a TPM (Trusted Platform Module). This initial trust point cannot easily be modified, providing a secure foundation for verifying the rest of the system.

2. Digital Signature Verification: Firmware and software components are digitally signed by the manufacturer. During boot, the system checks these signatures to confirm:

• The software comes from a trusted source
• The software has not been altered
• The software version is authorised for use

If verification fails, the device can block execution or enter a recovery mode.

3. Secure Chain of Trust: Each stage verifies the next stage before handing over control. This prevents attackers from bypassing security by modifying early boot components such as BIOS firmware or bootloaders.

Authenticated Boot vs Secure Boot

Authenticated boot and Secure Boot are closely related concepts and are often used interchangeably.

• Secure Boot is typically associated with the UEFI standard used in modern computers and ensures that only trusted operating systems and bootloaders can run.
• Authenticated boot is a broader concept that applies across embedded systems, industrial controllers, IoT devices, and specialised computing platforms. It focuses on verifying the authenticity of every stage in the complete boot chain.

For industrial computing applications, authenticated boot provides a more comprehensive approach to system security.

Why is Authenticated Boot Important for the Cyber Resilience Act?

The CRA introduces cybersecurity requirements for products containing digital elements, including industrial computers, embedded systems, IoT devices, and edge computing platforms. Manufacturers must demonstrate that products are designed to reduce cybersecurity risks throughout their lifecycle. Authenticated boot supports several CRA security objectives:

• Prevent Unauthorised Software Execution: Only approved and verified software can run on the system, reducing the risk of malware infections and unauthorised modifications.
• Improving Device Trust: Manufacturers and operators can have greater confidence that deployed systems are running approved software configurations.
• Supporting Secure Updates: Signed firmware and software updates ensure that only legitimate updates from trusted sources can be installed.
• Protecting Firmware Integrity: Industrial computers are often deployed in remote or physically accessible locations. Authenticated boot helps protect against attempts to replace firmware with compromised versions.

Key Security Technologies Used with Authenticated Boot

Industrial computers designed for secure deployment often combine authenticated boot with additional security features:

Technology	Purpose
TPM 2.0	Provides secure storage for encryption keys and device identity
Secure Boot	Prevents unauthorised operating systems and bootloaders from running
Signed Firmware Updates	Ensures only trusted updates are installed
Measured Boot	Records system integrity measurements during startup
Hardware Root of Trust	Establishes the initial trusted security foundation

Together, these technologies create a layered security approach suitable for demanding industrial environments.

Authenticated Boot in Industrial Computing

Secure Industrial Computing Solutions from BVM

At BVM, we design and supply industrial computing solutions for demanding applications where reliability, security, and long-term availability are essential. Our industrial PCs, embedded systems, and custom computing platforms can incorporate advanced security technologies including secure boot, TPM support, trusted firmware configurations, and customised hardware solutions.

As cybersecurity regulations such as the Cyber Resilience Act continue to evolve, implementing security features at the hardware and firmware level is becoming essential for the next generation of industrial systems. Contact BVM to discuss secure industrial computing solutions designed for your application.