1 Introduction
Welcome to the Yocto Project Security Manual. This manual provides relevant procedures for dealing with security-related tasks supported in the Yocto Project environment. This manual groups related procedures into higher-level sections. Procedures can consist of high-level steps or low-level steps depending on the topic.
This manual provides the following:
Procedures that help you secure an image using features supported by the Yocto Project; for example, making a root filesystem read-only.
Procedures related to processes outside of the target images; for example, how to deal with vulnerabilities.
This manual does not provide the following:
Procedures for security features implemented outside of OpenEmbedded-Core (OE-Core).
Documentation for the security mechanisms themselves, which can often be found in the documentation of the feature itself. This manual focuses on how to integrate those security mechanisms within the Yocto Project.