- ZC.QingLong Secureboot Based On Infineon TC2XX
- ZC.QingLong SPI OTA Product Manual Based On Infineon TC397
- ZC.QingLong SecureBoot Product Manual Based on NXP S32K3 For CHERY QSQR
- ZC.QingLong BootLoader Product Manual Based on NXP S32K3
- ZC.QingLong FOTA Solution
- ZC.QingLong BootLoader
- ZC.QingLong BootLoader Product Manual Based on NXP KW45
- ZC.QingLong SecureBoot Product Manual Based on Infineon TC377
- ZC.QingLong FOTA Product Manual Based on Infineon TC387
- Introduction to ZC.QingLong Ethernet Flashing Based on RH850U2A
- ZC.Qinglong Ethernet BootLoader Product Manual Based on RENESAS RH850U2A
- ZC.QingLong SecureBoot Product for NXP S32K344
- ZC.QINGLONG FOTA PRODUCT MANUAL BASED ON INFINEON TLE9893
- ZC.QingLong BootLoader Based on Infineon TC213 SMTC
- ZC.QingLong BootLoader Product Manual Based on STSPC58NN for GEELY GEEA2.0
- ZC.Qinglong Bootloader Product Manual Based On NXP NCJ29D5
- ZC.QingLong FOTA Product Manual Based on Infineon TC3xx
- ZC.QingLong FOTA
- ZC.QingLong Secureboot Based on NXP S32K1XX
SecureBoot
ZC can provide customers with a complete SecureBoot solution and can customize the development according to specific project requirements and hardware modules:
l Hardware-based encryption solution
l Software-based encryption solution
l Key storage management solution
l Secure Boot failure analysis
l Production line production mode solution
l Data compression download
l Data encryption upgrade
Secure Boot is a fundamental feature of the MCU, implemented through hardware encryption modules. This mechanism must operate independently of the user program and cannot be compromised. As the foundation of the entire secure boot trust chain, Secure Boot is primarily used to verify the integrity and authenticity of key programs in the user-defined Flash after the MCU starts and before the user program is executed, to ensure they have not been tampered with. If the verification fails, it indicates that the MCU is in an untrusted state, and some functions or even the entire program cannot be executed.
Ø Secure Boot Trust Root
Secure Boot relies on the hardware support of the chip to provide the initial trust root with executable code and keys. The trust root key is used by the trust root code to verify the first boot phase of the signed software or the content of the key data part of the signed software. This signed software is used to verify the code of subsequent operational phase software components. The key should be supplied by the OEM to the hardware manufacturer during the production phase and stored in protected memory.
Ø Secure Boot Trust Chain
The Secure Boot Trust Chain is established by the trust root code. The root of the trust root code verifies the first stage of the boot loader. If the verification is successful, the verified software can be executed and the validity of the subsequent boot phase software can continue to be verified.
Ø Secure Boot process
Encrypting data content can protect data from being disclosed and also prevent data from being tampered with during transmission. Encryption algorithms are generally divided into symmetric encryption algorithms and asymmetric encryption algorithms. Symmetric encryption algorithms use the same key for both encryption and decryption, while asymmetric algorithms use a public key for encryption and a private key for decryption. The public and private keys exist in pairs; for example, data encrypted with the public key must be decrypted with the private key, and vice versa.
AES is the most commonly used symmetric encryption algorithm, known for its fast computation speed, low memory requirements, and flexible block and key length design. For asymmetric encryption algorithms, typical examples include RSA and ECC. The RSA encryption algorithm is often chosen for signing and verifying images.
The QingLong SecureBoot developed by ZC includes the core firmware of the hardware security module (zHSM CORE) and the customer application interface functions (SHE CD). In addition to meeting the conventional SHE functions (key injection, symmetric encryption and decryption, message authentication code generation and verification, random number generation, and secure boot, etc.), the core firmware can also be extended to support various algorithms, such as HASH, ECC256, and national cryptographic algorithms.
ZC can provide customers with a complete Updater solution and can customize development according to specific project requirements and hardware modules:
l Version verification function
The Updater is an important means for the upgrade and iteration of automotive electronic software, mainly used to update the flashing process of the Bootloader to comply with the latest flashing process scheme of the OEM. During the development and use of automotive electronic software, due to hardware limitations and the lack of some software module functions, it usually only meets the initial version of the OEM flashing specifications when first released. In the case of subsequent application software updates, in order to synchronize the adaptation of the Bootloader software to the latest OEM flashing specifications and to fix bugs in the Bootloader, the Bootloader function can be updated through the Updater software, reducing the workload of software upgrades and improving the efficiency of software upgrades.
The Qinglong Bootloader developed by ZC supports Updater's version verification, upgrade, and other functions. It can meet the specification requirements of different OEMs and can be customized for development. The Updater plays an important role in software updates, ensuring that the Bootloader can also be updated and iterated like the application software during its use.
ZC can provide customers with a complete FOTA (Firmware Over-The-Air) solution and can customize development according to specific project requirements and hardware modules:
l partition backup upgrade
l Differential Upgrade
l Backup rollback
l Seamless upgrade
l Supporting upper computer tools (Xuanwu upper computer tool)
l Support for different OEM manufacturer specifications
As software functionality becomes increasingly complex, ensuring that software can be updated through wireless upgrades and that software rollback features are available is becoming more and more important during the software update process.
Ø A/B Partition Backup Upgrade
In traditional upgrade processes, the old application is usually overwritten by the new one. If the upgrade process fails or is interrupted, and the old application has already been erased, the hardware cannot execute the application function normally. To avoid the application becoming ineffective after an upgrade failure, the A/B partition backup upgrade feature allows the old application to be rolled back during the upgrade process, ensuring the reliability of the application software. On the other hand, the A/B partition backup upgrade feature allows the application software to be upgraded while it is running, improving the user experience and greatly increasing the efficiency of the application software upgrade.
Ø Differential Upgrade
Also known as incremental upgrade, differential upgrade is the process of extracting the differences between the source version and the target version using a differential algorithm to create a differential package. The device then uses a restoration algorithm to restore the differences on the source version, thus upgrading to the target version. The differential upgrade solution not only saves MCU internal resources and space but also saves on the download process and the power consumption during downloading and upgrading.
Ø Seamless Upgrade
ZC.Qinglong FOTA, by integrating with the application, achieves a seamless upgrade function. The vehicle application software automatically completes the download of the latest software data through version comparison and obtaining upgrade tasks, while the application is running, completing a seamless download. After the application software completes the download, it installs the latest software data into the B system, which is executed while the vehicle is running, i.e., seamless installation. Finally, when the vehicle is powered on again, the device performs an A/B partition switch, which is the activation process, a perceptible process. For devices with "seamless upgrade" capabilities, the process that users can perceive is only the "activation" of the new software system. The B system switch, which may take tens of minutes, can be greatly shortened in the "seamless upgrade" scenario, reducing the power consumption of the vehicle during the upgrade, shortening the customer's vehicle downtime, and ensuring the system's constant availability.
The FOTA on the MCU side is a vital component of the automotive electronics OTA update process:
Ø Secure Boot effectively prevents attackers from maliciously modifying the software.
Ø Updater can update the Bootloader software, ensuring that the Boot process aligns with the latest flashing procedures.
Ø Wireless updates (FOTA) can execute remote wireless upgrades during the vehicle's operation, and when combined with features like AB partitioning and differential flashing, it can efficiently upgrade firmware capabilities.
Qinglong Software BOOTLOADER Product Certificate
Click to download the product manual