Secure Boot is not a feature that you need to actively use; rather, it is a platform security mechanism. The device will only boot using approved and signed INSYS firmware, and the entire boot process is cryptographically secured. This reduces the risk of tampering and supports higher security requirements in industrial environments.
It is important to understand this correctly:
Secure Boot is an additional protective measure, but it does not replace secure configuration, network segmentation, access control policies, or organizational security processes.
Likewise, Secure Boot should not be interpreted to mean that devices without Secure Boot are inherently insecure.
For you, Secure Boot primarily means greater confidence in the platform’s integrity and a securely established foundation for operation.
Already today, INSYS icom routers running icom OS exclusively accept the loading of firmware signed by INSYS. Secure Boot extends this protection to the entire boot process—including the bootloader.