pi3g-only-square
4

Raspberry Pi security &
compliance expertise

Secure your Raspberry Pi & IoT systems.

From threat modelling to secure boot, encryption, attestation and ongoing compliance support.

We are an approved Industrial Raspberry Pi Reseller - active since 2012

Discuss my project

Solving the security challenge

Our customers love to create solutions based on Raspberry Pi. Robots, time tracking systems, monitoring systems, medical solutions, drones, digital gateways and many more - these solutions make life easier for everyone. 

Building the solution is challenging and fun! However, it also requires teams to stay up-to-date with current security regulations, to implement cryptography, and to dive deep into topics like secure boot, full disk encryption, trusted platform modules, RED, CRA, OTA updates, and many more. 

This can seem daunting, especially for a smaller development team which is on a tight time-to-market deadline.

We can help you to secure and compliance-proof your embedded Raspberry Pi systems - whether these are based on Raspberry Pi 4, Pi 5, Compute Module 4 (CM4) or Compute Module 5 (CM5).

Software IP protection

Your Raspberry Pi's main storage - SD cards - and the software and passwords stored on them can be easily read and copied.

We help you to protect your software IP by encrypting the system drive of your embedded Raspberry Pi solution.

Prevent these possible threats:

  • Stop users from cloning your software and using it for free (at the cost of an additional Pi)
  • Prevent competitors from analyzing and decompile your software
  • Keep bad actors from gleaning WiFi passwords and other credentials

Secure Software Updates (OTA)

New features drive product value — but also new threats and attack vectors emerge over time, for example Spectre or Heartbleed. Security patches and OS updates are released continuously.

We enable secure over-the-air (OTA) updates for already deployed devices, including rollback/fallback mechanisms. This keeps your fleet operational while ensuring devices remain secure and up to date with your latest software release.

Why secure OTA updates matter: 

  • attack vectors are well-known once published and can be exploited by replicating the information - having fast updates limits the potential damage
  • building resilient systems which can be updated allows you to future-proof your devices to changing regulatory requirements and a dynamic security landscape
  • the update mechanism needs to be implemented carefully, so it doesn't become an attack vector itself

Compliance

Compliance with Industrial & IoT security requirements (CRA/ETSI-level).

We support your team in making your devices compliant with the relevant EU regulations from inception to cradle.

Compliance support protects you: 

  • no more lengthy re-engineering after-the-fact
  • no missing out on current regulatory changes
  • prevent missing important parts in your documentation
Discuss my project

Industrial Raspberry Pi security & compliance solutions

We offer verified, testable embedded security solutions for your Pi 4, Pi 5 and CM4 / CM5 based projects.

Our building blocks for your embedded Raspberry Pi devices include hardware security components, software engineering for secure embedded systems, and a legal compliance review by a specialized partner company.

Secure boot

We enable secure boot and measured boot protection on Pi / TPM-based trust for your devices.

The device will boot only what it is supposed to boot, bound to a trusted signing authority, and a defined policy.

Secure boot prevents: 

  • offline tampering / "evil maid" style attacks
  • boot-time malware / persistent rootkits
  • attacks against your upstream systems and network
  • increased support costs (users tampering)

Full disk encryption

We build full disk encryption (hardware based / LUKS) for regulatory and data protection needs to secure your storage.

The main parts of the operating system, your code and secret passwords will be encrypted on the SD card or eMMC FLASH.

Full disk encryption prevents: 

  • copying and reverse-engineering your software
  • stealing the WiFi passwords (important for RED!)
  • attacks against your upstream systems and network

Compliance

Compliance with Industrial & IoT security requirements (CRA/ETSI-level).

We support your team in making your devices compliant with the relevant EU regulations from inception to cradle.

Compliance support protects you from: 

  • lengthy re-engineering after-the-fact
  • missing out on current regulatory changes
  • missing important parts in your documentation
Discuss my project

Raspberry Pi hardware security & embedded Pi development

LetsTrust TPM hardware security module

This module is built around the Infineon Optiga™ SLB 9672 TPM 2.0.

A trusted platform module is a key component for security concepts for the Raspberry Pi, like secure boot, secure storage of cryptographic keys, encrypted boot partitions, remote hardware attestation, and more.

The LetsTrust TPM module, is fully built and tested in Germany. Over 7000 units have been sold since 2017.

Purchase at buyzero.de

Swissbit Security Level 2 microSD card

One of our key features of this Swissbit microSD card is the ability to implement Secure Boot on Raspberry Pi systems, ensuring trusted boot sequences and robust security for your projects.

It is an easy go-to to upgrade existing Raspberry Pi based solutions and products for compliance with the new RED requirements.

At pi3g, we can support you in implementing Swissbit Security Upgrade Kit microSD cards in your embedded project.

Purchase at buyzero.de

Embedded Raspberry Pi Software development

We have a team of experienced embedded software developers to support you with your Raspberry Pi device security and compliance requirements.

  • Secure Boot
  • Signed Boot
  • Full disk encryption
  • Secure Updates
  • VPN security
  • ... and more
Read More
Discuss my project

Discuss your project with us

Please describe your business context and the problem you want to solve. Which challenges are you facing currently? What can we advise you on? Can you already share a timeline with us?
Rough order of magnitude estimate of your project budget.
This field is for validation purposes and should be left unchanged.

Business is built on trust.

As owner and general manager of pi3g GmbH & Co. KG trust, openness, mutual benefit and deep knowledge about our products are our highest values.

This, in my opinion, is the way long-term business relationships are built.

- Maximilian Batz (pi3g GmbH & Co. KG)

Discuss your project with us
Team-Max

Our Raspberry Pi & Embedded Hardware Services

🛡️ Fixed pricing

Zero surprises. Full transparency for your business decision - is this going to be worth it for me? You know our price in advance.

🛡️ 100 % money back guarantee

Dissatisfied with the results? We can't fix it? You will get 100 % of your money back.

🛡️ Lifetime bug warranty

We fix bugs in code we've written. Free. Forever.

FAQ

What is pi3g focused on?
Can you supply us continuously?
Do you offer EMS services?