Hardware and Security

Hardware

Amazon Signage Stick

Encryption Standards The Signage Stick implements both AES-128 and AES-256 encryption standards for different software components stored in device.
Secure Boot-loader Signage Stick employs a hardware-based root of trust, with platform-specific implementations stored in immutable read-only memory. The secure boot process creates a chain of trust from hardware to boot-loader and kernel, validating digital signatures at each stage. Code signing is implemented through a rigorous process using RSA private keys, with all boot-loader images requiring proper signing through authorized channels before deployment.
OS Update Mechanism Updates are available through OTA and signed with Amazon code signer. For update validation, the system incorporates anti-rollback protection that prevents downgrading to older, potentially vulnerable versions by validating component version numbers. Additional security features include system image signing to prevent advanced persistent threats, boot-loader image encryption, SELinux integration, and regular security patch updates.
Device lifecycle policy 3 years of guaranteed security updates. Upon request, Actionfigure will replace hardware approaching 3 years in operation.
Certification/attestation Signage Stick has successfully completed Amazon's comprehensive security review (ASR) and certification process, which included third-party penetration testing (PEN) conducted by independent security auditors.
Amazon Security Review (ASR) Includes reviews on Architecture, Threat Model, Threat Mitigation, Privacy Compliance, Incident Response, source Code, System & Event logs, Data Integrity and Secrets Management, and more.
Penetration Testing (PEN) PEN consists of 3 main components: Dynamic Testing of the Signage Stick device including examination of the device's applications, operating system, and network interactions. In-depth code review, and Firmware Analysis with a focus on security weaknesses and vulnerabilities. </aside>