Bastionchip silicon in evaluation — now accepting qualified partner requests. Request Eval Kit →
Bastionchip Platform

Secure Boot & Attestation

Six-stage boot chain from silicon ROM to attestation token. Every firmware layer verified in hardware. No software can forge the trust chain.

Boot stages 6-stage
Boot Chain

Integrity chain from silicon to running workload

Each stage measures the next and extends a hardware-held PCR value. Measurement chain anchors to the PUF device identity — tamper or substitution of any stage breaks the attestation token.

1
ROM (Silicon)
Immutable boot ROM hard-wired in silicon. Derives device key from PUF. Verifies BL0 signature.
2
BL0 (Primary Bootloader)
Initializes platform security context. Extends PCR. Verifies and launches BL1.
3
BL1 (Trusted Firmware)
Trusted Firmware-A compatible. Sets up secure world partitions. Extends PCR chain.
4
BL2 (Normal Bootloader)
Normal world bootloader (UEFI/GRUB). Measures OS kernel before execution.
5
OS Launch
OS kernel launches. Final PCR state reflects complete boot path measurement.
6
Attestation Token
Hardware signs PCR state with PUF key. Token sent to remote verifier — proof of boot integrity.
PUF Identity

Device identity derived from silicon physics, not factory injection

Physical Unclonable Functions harvest entropy from manufacturing variation in transistor threshold voltages. The resulting 256-bit root key is unique to each die, reproducible from the silicon itself, and never stored — it is derived on demand.

  • No factory key injection — eliminates the provisioning attack surface
  • No key stored in non-volatile memory — derived from silicon on demand
  • 256-bit output, NIST SP 800-90B-aligned entropy source
  • Seed for device certificate, PCR signing key, and key storage encryption
PUF Entropy Model

Each cell's threshold voltage responds differently to manufacturing variation. The bit pattern is unique per die and reproducible from silicon physics.

Integrate secure boot into your OEM platform

Integration documentation and evaluation silicon available to qualified OEM and defense design partners.

Schedule Technical Briefing Attestation Protocol