Creating ports for BSD distributions
Published at March 15, 2021 · 8 min read

In this blog post, we will present how to build packages for FreeBSD, DragonFlyBSD, NetBSD, and OpenBSD. Also, we will show you how to create CI for FreeBSD distribution with the use of GitHub action....
Categories: firmware
Porting fwupd to the BSD distributions - How to compile fwupd on FreeBSD
Published at February 16, 2021 · 14 min read

The security of the whole system is not determined only by the software it runs, but also the firmware. We want to provide easy firmware update method to BSD distributions....
Categories: firmware
Proof of concept implementation of RATS attestation for the TrenchBoot
Published at December 14, 2020 · 9 min read

This blog post will describe the concept of the IETF Remote Attestation Procedures (RATS) and implementation of CHAllenge-Response based Remote Attestation (CHARRA) with TPM 2.0 for TrenchBoot....
Trenchboot: Xen hypervisor support for the TrenchBoot
Published at October 15, 2020 · 4 min read

In this blog post, we will describe the development of the Xen hypervisor support for TrenchBoot....
Reasonably secure way to update your system firmware
Published at September 18, 2020 · 3 min read

As you may know from the previous blog post, the qubes-fwupd is the wrapper that allows you to update the firmware of your devices in the Qubes OS. This time I will briefly describe the new features, whereby you will securely update your system firmware....
Categories: firmware os-dev security
Project status of the fwupd/LVFS support for Qubes OS
Published at July 14, 2020 · 5 min read

During the QubesOS minisummit, I have presented the initial status of the fwupd/LVFS support for the Qubes OS. Now it is time to share some more information about the progress....
Categories: firmware os-dev security
Easy way to stay secure - XEN on the PC Engines apu2
Published at February 5, 2020 · 3 min read

Xen Project creates a software system that allows the execution of multiple virtual guest operating systems simultaneously on a single physical machine. In this case, it is a PC Engines apu2 platform....
Categories: manufacturing os-dev security