Secure Boot and Key Management for Embedded Devices in the Post-Quantum Transition (A21b)
This talk outlines a secure-boot and key-management framework for embedded devices designed to withstand the post-quantum transition. It combines hardware-anchored code signing and verification with cryptographic agility in key handling. By using pre-provisioned AES keys to protect PQC signing keys during provisioning and updates, the approach enables quantum-resilient workflows without requiring new secure elements—bridging today’s hardware trust anchors with tomorrow’s PQC algorithms for secure, certifiable embedded deployments.
