A Secure Over-the-Air (SOTA) Update is a remote firmware management protocol that uses cryptographic signatures and secure communication channels to deliver authenticated software patches to deployed microcontroller devices. Its primary function is to ensure update integrity and authenticity, preventing the installation of malicious or corrupted code. This process is fundamental for maintaining the security posture of Internet of Things (IoT) fleets by patching vulnerabilities without physical recall.
Glossary
Secure Over-the-Air (SOTA) Update

What is Secure Over-the-Air (SOTA) Update?
Secure Over-the-Air (SOTA) Update is a critical process for remotely and securely delivering, authenticating, and installing firmware or software updates to embedded devices in the field.
The SOTA pipeline typically involves a secure server, a hardware root of trust on the device (like a Secure Element), and lightweight cryptography for verification. It enforces anti-rollback protection to prevent devices from reverting to vulnerable versions. For TinyML systems, SOTA is essential for deploying updated machine learning models and patching inference engines, ensuring long-term device security and functionality in resource-constrained environments.
Core Components of a SOTA System
A Secure Over-the-Air (SOTA) update system for microcontroller-based devices is not a single piece of software but a multi-layered architecture. These core components work in concert to ensure updates are delivered, authenticated, and installed without compromising device security or functionality.
Secure Bootloader
The immutable, hardware-rooted first piece of code executed on device startup. It establishes the chain of trust for the entire system. Its critical SOTA functions are:
- Cryptographic Verification: Before jumping to the main application, it validates the digital signature of the firmware using a public key stored in secure hardware (e.g., OTP memory).
- Boot Rollback Protection: Enforces version counters to prevent downgrading to a firmware with known vulnerabilities.
- Recovery Mode: Provides a fallback mechanism (e.g., booting from a separate, validated recovery image) if the primary update fails, ensuring the device remains recoverable.
Update Client (In-Field Agent)
The software module running on the embedded device that manages the local update process. It operates within the constraints of the microcontroller and is responsible for:
- Secure Communication: Establishing authenticated TLS/DTLS sessions with the update server.
- Update Discovery & Download: Polling or listening for available updates and downloading the delta or full image to a staging area (often external flash).
- Local Verification: Performing a secondary cryptographic verification of the downloaded image against the signed manifest.
- Update Orchestration: Coordinating with the bootloader to schedule the actual firmware swap, often requiring a device reboot.
Cryptographic Primitives & Key Storage
The mathematical foundation for all security guarantees in a SOTA system. This component encompasses:
- Asymmetric Cryptography (e.g., ECDSA): Used for signing update manifests and verifying them on the device. Elliptic Curve Cryptography (ECC) is preferred for its small key size.
- Symmetric Cryptography (e.g., AES-GCM): Used for encrypting the firmware image in transit and at rest, providing confidentiality.
- Secure Key Storage: The most critical element. Private signing keys are kept on the secure server. Public verification keys and device-unique secrets must be stored in hardware-protected storage on the MCU, such as a Secure Element, Trusted Execution Environment (TEE), or provisioned during manufacturing in One-Time-Programmable (OTP) memory.
Resilient Update Storage & Atomic Swaps
A hardware and software strategy to guarantee the device remains operational even if an update is interrupted (e.g., power loss). This is typically achieved through a dual-slot (A/B) firmware layout:
- Slot A: Contains the currently running, active firmware.
- Slot B: A reserved memory partition (often in external QSPI flash) used as the staging area for the new update.
- Atomic Swap: The bootloader's pointer is only switched from Slot A to the verified image in Slot B after a complete and successful validation. The old image in Slot A is retained as a fallback, enabling automatic rollback on boot failure. This design ensures an uninterruptible boot process.
Integrity Measurement & Attestation
The mechanism that allows a remote server to cryptographically verify the software state of a device. This is crucial for compliance and intrusion detection.
- Remote Firmware Attestation: The device generates a signed report (attestation) of its currently running firmware version and hash, often using a device-unique private key from a Hardware Security Module (HSM) or Trusted Platform Module (TPM).
- Runtime Integrity: More advanced systems may extend attestation to critical runtime data and configurations.
- Trusted Reporting: This allows the management console to identify compromised, tampered, or non-compliant devices in the fleet and take corrective action, such as forcing a secure re-flash.
How Does a Secure Over-the-Air Update Work?
A Secure Over-the-Air (SOTA) Update is a remote process for delivering, authenticating, and installing firmware or software updates to embedded devices while ensuring update integrity, authenticity, and protection against rollback attacks.
A Secure Over-the-Air (SOTA) Update is a remote process for delivering, authenticating, and installing firmware or software updates to embedded devices while ensuring update integrity, authenticity, and protection against rollback attacks. The process begins with the update server cryptographically signing the new firmware image. This signed payload, often compressed and delivered incrementally as a delta update, is transmitted to the device over a potentially insecure network like cellular or Wi-Fi.
Upon receipt, the device's secure update client, anchored by a Hardware Root of Trust, verifies the digital signature against a trusted public key. It then authenticates the update's origin and checks its integrity before installation. Critical security measures include anti-rollback protection, which uses a monotonic counter to prevent downgrades to vulnerable versions, and often execution within a Trusted Execution Environment (TEE) to safeguard cryptographic operations. Successful installation is confirmed to the server via firmware attestation.
SOTA Use Cases in TinyML & IoT
Secure Over-the-Air (SOTA) updates are critical for maintaining the security and functionality of deployed microcontroller fleets. These cards detail the primary use cases where SOTA is essential for TinyML and IoT systems.
Security Patch Deployment
The most critical use case for SOTA is the rapid, remote deployment of security patches to fix vulnerabilities in deployed firmware. This is essential for mitigating risks like remote code execution or data exfiltration without physical device recall.
- Example: Patching a discovered buffer overflow in a BLE stack on millions of smart locks.
- Mechanism: A cryptographically signed delta update containing only the patched code modules is transmitted, authenticated via a hardware root of trust, and applied.
TinyML Model Updates
SOTA enables the iterative improvement of on-device machine learning models after deployment. New models, refined with fresh field data, can be pushed to devices to improve accuracy or adapt to data drift.
- Example: Updating an audio event detection model on a wildlife monitoring sensor to recognize a new species call.
- Constraint: Updates must be highly compressed (using quantization or pruning) to fit within the device's constrained flash memory and transmitted over low-bandwidth LPWAN networks like LoRaWAN.
Feature Rollouts & A/B Testing
SOTA allows for controlled, phased feature rollouts and A/B testing on edge device fleets. New functionalities can be enabled for a subset of devices to validate performance and stability before a full fleet-wide update.
- Example: Testing a new energy-saving inference schedule on 10% of a fleet of agricultural soil sensors.
- Process: Uses device grouping and rollback capabilities to safely test new features. Metrics are reported back via telemetry to inform the rollout decision.
Regulatory Compliance & Certification
In regulated industries (medical, automotive, industrial control), SOTA is necessary to maintain regulatory compliance and update device certifications without costly physical servicing.
- Example: Updating a firmware-based Medical Device Data System to comply with new FDA cybersecurity guidance.
- Requirement: The SOTA process itself must be validated and auditable, providing a complete chain of custody for the update from build server to device, often leveraging firmware attestation.
Bug Fixes & Performance Optimization
Beyond security, SOTA fixes functional bugs and deploys performance optimizations discovered post-deployment. This includes fixes for race conditions, memory leaks, or optimized peripheral drivers.
- Example: Deploying a fix for a power management bug causing excessive battery drain in a wearable device.
- Optimization Example: Pushing a new, more efficient DSP kernel for sensor signal processing that reduces CPU load by 15%.
Root Certificate & Key Rotation
SOTA manages the lifecycle of cryptographic materials on the device. This includes updating Certificate Authorities (CAs), root of trust certificates, and rotating device attestation keys that may expire or become compromised.
- Critical Process: Requires a secure boot fallback mechanism and dual-image partitioning to ensure a failed key update does not brick the device.
- Use Case: Proactively rotating elliptic curve cryptography keys across an IoT fleet in response to improved cryptanalysis.
SOTA vs. Related Update & Security Concepts
This table compares Secure Over-the-Air (SOTA) Update against other core security and update mechanisms used in embedded and TinyML systems, highlighting their primary purpose, scope, and key characteristics.
| Feature / Concept | Secure Over-the-Air (SOTA) Update | Secure Boot | Firmware Attestation | Trusted Execution Environment (TEE) |
|---|---|---|---|---|
Primary Purpose | Remotely deliver & install authenticated firmware/software updates. | Verify integrity/authenticity of bootloader & initial firmware at startup. | Remotely prove the integrity & authenticity of currently running firmware. | Provide a hardware-isolated environment for secure code execution & data handling. |
Scope of Operation | Full firmware/application lifecycle management post-boot. | Initial boot sequence only (chain of trust establishment). | Runtime state verification; can be performed at any time. | Runtime isolation for specific sensitive applications & data. |
Cryptographic Foundation | Authenticated encryption, digital signatures (e.g., ECDSA), hash verification. | Digital signature verification of boot images using a hardware root of trust. | Cryptographic measurement (hash) of firmware signed by a hardware root of trust. | Hardware-enforced memory isolation, secure storage, and attestation capabilities. |
Update Mechanism | Delta or full image updates delivered via network, authenticated before installation. | Not an update mechanism; a verification gate for updates installed via other means (e.g., SOTA). | Not an update mechanism; a reporting mechanism for the state resulting from an update. | Not an update mechanism; can host secure applications that may be updated via SOTA. |
Defends Against | Malicious update injection, man-in-the-middle attacks, rollback to vulnerable versions. | Execution of unauthorized or tampered boot-time code. | Reporting of compromised or unauthorized firmware state to a remote service. | Privileged software (OS, hypervisor) accessing sensitive code/data. |
Hardware Dependency | Requires secure storage for keys, but primarily a software protocol. Enhanced by HSM/PUF. | Mandatory hardware root of trust (e.g., immutable ROM code) for initial verification. | Requires a hardware root of trust to create unforgeable measurements. | Requires specific processor extensions (e.g., ARM TrustZone, Intel SGX). |
Typical Interaction | SOTA client on device communicates with remote update server. | Boot ROM verifies first-stage bootloader, which verifies next stage, establishing a chain. | Device generates a signed report (attestation) for a remote verifier. | Normal World OS calls into Secure World to execute trusted functions. |
Critical for SOTA? |
Frequently Asked Questions
Secure Over-the-Air (SOTA) Update is a critical process for remotely and securely delivering, authenticating, and installing firmware or software updates to embedded devices in the field. This FAQ addresses the core mechanisms, security requirements, and implementation challenges specific to TinyML and microcontroller-based systems.
A Secure Over-the-Air (SOTA) Update is a remote software delivery and installation process for embedded devices that cryptographically guarantees the integrity, authenticity, and often the confidentiality of the update, while preventing unauthorized rollbacks to older, potentially vulnerable firmware versions. It is a foundational component of the device lifecycle, enabling bug fixes, security patches, and feature enhancements for deployed microcontroller fleets without physical recall.
For TinyML deployment, a SOTA update pipeline must manage not just the core device firmware but also the deployed machine learning model, its associated inference engine, and any data preprocessing libraries. The process typically involves a secure server, a constrained client on the device, and a robust cryptographic protocol to transfer and validate the update payload before installation.
Enabling Efficiency, Speed & Accuracy
Intelligent Analysis, Decision & Execution
We build AI systems for teams that need search across company data, workflow automation across tools, or AI features inside products and internal software.
Talk to Us
Search across company data
Give teams answers from docs, tickets, runbooks, and product data with sources and permissions.
Useful when people spend too long searching or get different answers from different systems.

Automate internal workflows
Use AI to route work, draft outputs, trigger actions, and keep approvals and logs in place.
Useful when repetitive work moves across multiple tools and teams.

Add AI to products and internal tools
Build assistants, guided actions, or decision support into the software your team or customers already use.
Useful when AI needs to be part of the product, not a separate tool.
Related Terms
Secure Over-the-Air (SOTA) updates are a critical component of a comprehensive embedded security strategy. The following concepts form the foundational hardware and software mechanisms that enable secure, remote firmware management.
Secure Boot
Secure Boot is the hardware-enforced starting point for device integrity. It establishes a chain of trust by cryptographically verifying the digital signature of the initial bootloader and all subsequent software stages before execution. This prevents the device from running malicious or tampered firmware at startup, creating a trusted foundation upon which a SOTA update process can safely install new code.
Hardware Root of Trust
A Hardware Root of Trust (HRoT) is an immutable, hardware-based security foundation within a system-on-chip. It provides the cryptographic anchor for the entire security ecosystem. For SOTA updates, the HRoT is responsible for:
- Secure key storage for signing and verification.
- Performing the initial trusted measurement of firmware.
- Generating attestation reports that prove the device's state to a remote server before an update is authorized.
Firmware Attestation
Firmware Attestation is the process where a device cryptographically proves the integrity and authenticity of its currently running software to a remote verifier. In a SOTA workflow, attestation is used for pre-update validation to ensure the device is in a known-good state and for post-update confirmation to verify the new firmware was installed correctly. It typically relies on a Hardware Root of Trust to sign a hash of the current firmware image.
Authenticated Encryption
Authenticated Encryption is a cryptographic mode of operation that simultaneously provides confidentiality, integrity, and authenticity for data. In SOTA updates, it is used to protect the firmware binary during transit. The update server encrypts the firmware and appends a Message Authentication Code (MAC). The device decrypts and verifies the MAC, ensuring the update was not read or altered in transit. Algorithms like AES-GCM are commonly used for this purpose on constrained devices.
Trusted Execution Environment (TEE)
A Trusted Execution Environment (TEE) is a secure, isolated area of a main processor that provides a protected space for sensitive operations. In the context of SOTA, a TEE can be used to:
- Securely decrypt and verify the incoming firmware update.
- Stage the new image in isolation, preventing the main OS or applications from accessing or corrupting it.
- Execute the secure bootloader or update manager code, shielding it from potential runtime attacks.
Rollback Protection
Rollback Protection (or Anti-Rollback) is a security feature that prevents a device from being downgraded to an older, potentially vulnerable version of firmware. A SOTA system implements this by storing a cryptographically secured version counter (e.g., in monotonic counter hardware or secure storage). The update process checks that the new firmware's version number is strictly greater than the current one before installation. This mitigates attacks where an adversary tries to reinstall a version with known exploits.

About the author
Prasad Kumkar
CEO & MD, Inference Systems
Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.
His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.
Partnered with leading AI, data, and software stack.
How We Work
Custom AI workflows for your Business
One-fit-all AI don't work for modern businesses. At Inferensys, we aim to understand your business & custom requirements; which we use to define most efficient agentic workflows, the data, and the tools for your business.
01
Review the use case
We understand the task, the users, and where AI can actually help.
Read more02
Pick the right approach
We define what needs search, automation, or product integration.
Read more03
Build the first useful version
We implement the part that proves the value first.
Read more04
Improve from there
We add the checks and visibility needed to keep it useful.
Read moreThe first call is a practical review of your use case and the right next step.
Talk to Us