- Written by Baptiste Covolato
- Posted on June 17, 2019
- Updated on June 27, 2025
- 14222 Views
Secure boot is a security feature available in Aboot (Arista bootloader) that verifies the cryptographic signature of the EOS SWI (software image) before it is booted. Aboot embeds certificates that allow it to recognize and validate official EOS releases from Arista. If the signature verification is successful, the secure boot check passes and Aboot proceeds to boot the SWI. If the signature verification fails, the boot is aborted.
- Written by Niranjan Mahabaleshwar
- Posted on April 21, 2026
- Updated on April 21, 2026
- 65 Views
enrollz/attestz defines a set of gRPC-based services for TPM enrollment and attestation of network devices. Enrollz: provides the capability to verify the switch’s TPM-rooted identities and rotate switch owner certificates on the device. Attestz: provides the capability to attest the device by inspecting the contents of the different PCR ensuring no malicious tampering.
- Written by Baptiste Covolato
- Posted on January 13, 2026
- Updated on January 13, 2026
- 1012 Views
Secure boot is a security feature available in Aboot (Arista bootloader) that verifies the cryptographic signature of the EOS SWI (software image) before it is booted. Aboot embeds certificates that allow it to recognize and validate official EOS releases from Arista. If the signature verification is successful, the secure boot check passes and Aboot proceeds to boot the SWI. If the signature verification fails, the boot is aborted.