Swedish flag with blue background and yellow cross, symbolizing Sweden's national identity and heritage.

Vretenborgsvägen 28, floor 6
SE – 126 30 Hägersten
Phone: + 46 8 683 03 00

Norwegian flag featuring a blue cross with white borders on a red background, symbolizing Norway.

Midstranda 51
NO – 2321 Hamar
Phone: + 47 62 54 02 91

Flag of Denmark, national flag with red background and white cross, symbolizing Danish heritage and pride, used in official and cultural contexts in Denmark.

Hassellunden 14
DK – 2765 Smørum
Phone + 45 70 300 310

Get connected

SEC-Line Elements – Security Building Blocks for Embedded Computers by Kontron

SEC-Line Elements from Kontron provides comprehensive security building blocks for embedded computers, offering hardware-enforced application protection, trusted boot mechanisms, TPM-based authentication, secure boot capabilities, and vulnerability monitoring services. The solution addresses critical security challenges including confidentiality, integrity, and availability through dedicated secure elements and field-proven encryption technology. Key features include APPROTECT for application code protection, trusted boot with TPM secure element measurement, SSL/TLS authentication, UEFI secure boot configuration, and software vulnerability watch subscriptions. Available from Recab, your Nordic partner for Kontron cybersecurity solutions.

manufacturer

Kontron

product model

SEC-Line ELEMENTS

Overview

SEC-Line Elements from Kontron delivers a comprehensive suite of security building blocks designed specifically for embedded computing environments where digital security is paramount. As autonomous devices proliferate across industries, these systems face increasing attack surfaces while remaining deployed in the field for extended periods without operator supervision. The SEC-Line Elements platform addresses the three fundamental security threats of confidentiality, integrity, and availability through hardware-enforced root of trust mechanisms and proven encryption technologies. The APPROTECT feature provides guaranteed integrity by preventing application hacking, absolute confidentiality through encryption that prevents reverse engineering, and copy protection to prevent unauthorized system cloning. Using security technology from an industry leader in IP protection, application executable code is encrypted at rest and only decrypted in memory when proper keys stored in the dedicated hardware secure element are available. The Trusted Boot mechanism relies on TCG international standards using a Trusted Platform Module to measure all boot components including firmware, bootloader, and operating system through hash values, detecting any single bit change compared to reference values. TPM Authentication ensures private keys for secure network connections like HTTPS are stored and used under hardware protection, never exposed to potential theft. The Secure Boot feature restricts embedded computers to boot only properly signed code from UEFI BIOS firmware, preventing unauthorized software execution. Additionally, the Software Vulnerability Watch service provides ongoing monitoring of published vulnerabilities affecting deployed configurations, helping customers manage long lifecycle security challenges. Available from Recab, your Nordic partner for Kontron cybersecurity solutions.
Long Lifecycle, Modular, Robust Security Options, Scalable

Key highlights

Features

  • APPROTECT provides hardware-enforced application integrity, confidentiality, and copy protection using encryption technology.
  • Trusted Boot mechanism measures all boot components with TPM secure element for tamper detection.
  • TPM-based authentication stores private keys under hardware protection for SSL/TLS communications.
  • Secure Boot restricts firmware to boot only properly signed software images from UEFI BIOS.
  • Software Vulnerability Watch service monitors published vulnerabilities affecting deployed configurations annually.
  • Dedicated hardware secure elements provide field-proven root of trust for embedded computers.

Specifications

Security Element TPM (Trusted Platform Module)
TPM Version Support TPM1.2 (TPM2.0 planned)
Operating System Linux
Processor Architecture x86
BIOS Type UEFI
Encryption Algorithm RSA2048
Hash Algorithm SHA1 (SHA256 with TPM2.0)
APPROTECT Encryptions Per Service Up to 10 per project
Service Duration 2 years maximum
Secure Boot Keys PK, KEK, DB, DBX certificates
Supported OS Signatures Windows, Fedora, Ubuntu Linux
Attestation Local or remote cryptographic attestation

Applications

  • Protecting proprietary application code in deployed autonomous embedded systems
  • Securing network communications for industrial IoT devices without operator presence
  • Ensuring boot integrity for long-lifecycle critical infrastructure computing platforms
  • Preventing unauthorized software modifications in remote embedded computing deployments

Resources

Datasheet

https://recab.com/wp-content/uploads/2026/07/sec-line-elements_20201211_datasheet.pdf