Dasharo
LEARN

Discover and see how it works

mouse icon

How Dasharo works

Let’s us briefly explain what exactly Dasharo stack consists of

The first layer is a target platform. Most clients have it already chosen when starting a journey with Dasharo, however sometimes the platform is only adapted to a pre-selected set of features. With the knowledge about it’s specification we can proceed further.

The next step is about the firmware layer. The most common is coreboot due to it's strong focus on boot speed, security and flexibility, however the choice depends on targeted users of the platform. Further, depending on the chosen firmware, integration of Intel FSP or AMD AGESA is set. Having it all confirmed, the payload and the operating system may become the next layer – The stack may differ at this point. For example, UEFI firmware doesn't need payload to be implemented, due to it's compatibility with UEFI specification.

Followingly, selected set of features is implemented. The choice depends on platform specification and it's overall destination. The list of the sample features is available below. The process of creating dedicated Dasharo firmware is performed with the constant support of our team, from the early advisory steps to the constant maintenance process.

link iconCheck ready-to-buy Dasharo products
How Dasharo works graph
king chess icon

Dasharo Modules

Below are sample Dasharo features that can be added to your Dasharo product.

modules iconSecurity Module

btn icon Static Code and Dynamic Root of Trust for Measurement (S-CRTM and D-RTM)
Dasharo logo
  • Static Code and Dynamic Root of Trust for Measurement (S-CRT and D-RTM)
  • To reestablish trust in a compromised environment without reboot (D-RTM)
btn icon Secure, verified and measured boot integration
Dasharo logo To make sure your platform boots only trusted code.
btn icon Firmware Recovery
Dasharo logo To recover the firmware image in any situation.
btn icon Firmware re-ownership
Dasharo logo To complete the ownership transfer and verification of the software delivered with hardware.
btn icon Trusted Platform Module 2.0 (TPM)
Dasharo logo To make your platform tamper resistant, with secure chip that carries out cryptographic operations.
btn icon Secure firmware update
Dasharo logo To mitigate supply chain attacks and provide secure system firmware update.
btn icon Security Features Automatic Report
Dasharo logo To raise awareness of the security features implemented and the level of protection offered by platform firmware.
btn icon OPAL integration
Dasharo logo To enhance the safety of the data on the disk by leveraging its security features.
btn icon Intel STM or AMD SMM Supervisor
Dasharo logo To allow only controlled access and harden the level of isolation.
btn icon Hypervisor as payload
Dasharo logo To increase the security of the running target software to the highest possible level.

modules icon Compatibility Module

btn icon Regression Test Results (RTR)
Dasharo logo To prove the Dasharo generic and customer-specific features for your platform with a powerful set of automated suites integrated with Dasharo CI and results visualization.
btn icon Documentation
Dasharo logo To make users self-sufficient with explicit, user-dedicated manuals of released binaries, installation steps and best practices guidelines.
btn icon Continuous Integration
Dasharo logo To handle faults, isolate and resolve them in a reasonable time, including emergency releases.
btn icon USB boot
Dasharo logo To easily and quickly change the stuff the platforms boot into, including OS or any bootable tool.
btn icon Support for implementation of the Preboot eXecution Environment (iPXE).
Dasharo logo To boot from a network using the open source network boot firmware that provides full PXE implementation.To retrieve data through protocols other than TFTP (HTTP, iSCSI and more).
btn icon Continuous Deployment with fwupd/LVFS
Dasharo logo To have an insight into the continuous delivery process for the embedded firmware in hardware products and faster release rate.
btn icon Operating Systems Compatibility
Dasharo logo To improve the product accessibility.
btn icon Industry Standards Compliance Testing
Dasharo logo To gain an insurance on the product operability.
btn icon Legacy support
Dasharo logo To maintain backward compatibility.
btn icon USB BIOS Recovery Dongle
Dasharo logo To recover BIOS even in offline environment.

modules icon Performance Module

btn icon CPU Boost
Dasharo logo To increase significantly performance of the processor.
btn icon Boot time optimization
Dasharo logo To improve the boot time of the bootloader.
btn icon Power consumption optimization
Dasharo logo To reach reach a lower power consumption.

modules iconMarketing

btn icon Newsletter
Dasharo logo To allow your clients to be up-to-date with product release notes and events, rising strong interest around the product.
btn icon Blog
Dasharo logo To make your product visible with blog posts based on release notes with implementation examples marketing means.
btn icon Website
Dasharo logo To create a Dasharo product dedicated source base that may contain all crucial aspects of the product: RTR results, CI, Blog, binaries, releases and more according to your choice.
btn icon Dedicated firmware release site with changelogs
Dasharo logo To place all the binaries in one place with detailed changelogs.
king chess icon

Dasharo DIY

Coreboot logo coreboot YOURSELF

coreboot source-code is available in the official repository. That means you can port coreboot and adjust payload with chosen features providing that you are deeply experienced in firmware engineering and have a sufficient amount of time. Step-by-step procedures do not exist yet, so in case of any issue or bug, it is challenging to find a solution or at least a guide. Furthermore, integration, validation, emergency releases and maintenance may cause a problem without the constant support of an experienced firmware team.

Are we trying to tell you that it is not a good idea to port and adjust coreboot by yourself? No.

If you are experienced and porting coreboot will serve your purposes, you can fully manage it by yourself and we encourage you to do so! For OEM/ODM vendors, the need for time, quality and stability measures makes Dasharo the best choice. Let all the effort involved in porting, adjusting, maintenance and validation be on us – experienced firmware experts.

coreboot with Dasharo Dasharo logo

For OEM/ODM vendors the need for time, quality and stability measures Dasharo solution as the best choice. Let all the effort involved in porting, adjusting, maintenance, and validation be set on us – experienced firmware expert.

What can you gain?

  • Dasharo logo Full coreboot integration compatible with your specification
  • Dasharo logo Implementation of preferred Dasharo features available for your platform
  • Dasharo logo Graphical User Interface that will let you modify your features
  • Dasharo logo Maintenance support including emergency releases
  • Dasharo logo Transparent validation with regression tests results
  • Dasharo logo Marketing support with technical writing, documentation releases, blog posts and newsletters
king chess

Dasharo FAQ

Question categories:

modules iconGeneral

btn icon What is Dasharo?

Copied

Dasharo logo Dasharo is a complete ecosystem of tools and products that are used in the process of creating a binary. It offers the components that are needed to develop and maintain a high quality, scalable, and modular firmware, for the stability and security of your platform. It is the common effect of R&D effort, transparent validation, heavy attestation, smart components, reference OS, long maintenance, and enthusiasm for security and open source solutions.
btn icon What is firmware?

Copied

Dasharo logo Firmware is a set of instructions created to provide low-level control over a hardware device. Firmware provides information on how the device should operate. A good example of a firmware are embedded systems like traffic lights and consumer appliances. Computers with the most recognized firmware, commonly known as BIOS firmware, used during the booting process of a computer.
btn icon What is the difference between Dasharo and traditional UEFI/BIOS firmware development provided by IBV?

Copied

Dasharo logo Dasharo relies on open-source components with, as much as possible, a transparent supply chain. IBV-driven UEFI/BIOS development doesn’t reveal the firmware components supply chain details, so the customers don't know what components binary consists of and where the components come from. Dasharo enables the revenue model extension, but also cooperation with the community, crowdsourcing and organizations. UEFI/BIOS business model is dedicated to IBV / OEM customers only. Dasharo delivers transparent validation results, on the contrary IBV UEFI/BIOS development process doesn’t reveal testing results, so the changes cannot be tracked. This also leads to low quality release notes and poor communication with end customers and users. Dasharo by design gives you the opportunity to differentiate through firmware and maximize hardware features utilization, where the most basic UEFI/BIOS provided by OEM/ODM with their platforms focus on crucial features and building margin through volume sales . Dasharo focus, strategy, and goals are targeting into domain-specific computing instead one size fits all.
btn icon Can I port coreboot to the chosen platform myself since it is open-source?

Copied

Dasharo logo coreboot source-code is available in the official repository. That means you can port coreboot and adjust payload with chosen features providing that you are deeply experienced in firmware engineering and have a sufficient amount of time. Step-by-step procedures do not exist yet, so in case of any issue or bug, it is challenging to find a solution or at least a guide. Furthermore, integration, validation, emergency releases and maintenance may cause a problem without the constant support of an experienced firmware team. Are we trying to tell you that it is not a good idea to port and adjust coreboot by yourself? No. If you are experienced and porting coreboot will serve your purposes, you can fully manage it by yourself and we encourage you to do so! For OEM/ODM vendors, the need for time, quality and stability measures makes Dasharo the best choice. Let all the effort involved in porting, adjusting, maintenance and validation be on us – experienced firmware experts.
btn icon Can I request any demo?

Copied

Dasharo logo Visit dasharo.com/products where product line implementations and details will be available soon.
btn icon Why do I need Dasharo?

Copied

Dasharo logo To gain transparent validation, heavy attestation, smart components, reference OS, long maintenance and marketing support. Dasharo brings solutions to many of the problems of the traditional UEFI/BIOS firmware development provided by IBV, for example:
  • Existing BIOS firmware products leaves burden of responsibility for optimization to end user
  • Lack of security-focused BIOS firmware product which can seamlessly leverage advanced hardware security features
  • aintaining compatibility and compliance of BIOS firmware is a very complex task
  • Even in the light of competitive advantage OEMs/ODMs usually do not have time and/or resources to increase brand awareness and customer value through BIOS firmware solutions
If you don’t have a solution yet, let Dasharo become your answer. Contact us

modules iconProduct Info

btn icon What are Dasharo modules?

Copied

Dasharo logo Dasharo consists of four modules. Each covers a wide range of features from which the client can build up their own Dasharo firmware: Security Module - hardware protection features, eg. S-CRTM/DRTM Performance Module - hardware performance optimization features, eg. CPU Boost Compatibility Module - maintenance features, eg. CI/CD Marketing Module - brand awareness and customer value features, eg. Newsletter campaigns For the full list of features visit.
btn icon How long does it take to deliver Dasharo?

Copied

Dasharo logo Dasharo is created from ready-to-implement components, but the time to implement depends on many factors, such as the amount of features, platform amount and specification, needed standard. Contact us to get more detailed information.
btn icon How open is Dasharo?

Copied

Dasharo logo We are strong believers in Freedom and Open Source Software (FOSS), but we also have to deal with reality. Silicon Vendors and other providers in the firmware supply chain try to monopolize the ecosystem by including NDA procedures and binary blobs. Because of that, Dasharo has to provide seamless integration of Intel FSP, AMD AGESA and other binary components. Dasharo is needed for liberating the firmware ecosystem, because it is the only product that transparently leverages the Open Source Firmware. Dasharo promotes best practices that can prove that a non-closed approach is financially feasible and can lead to an equally effective business model. Concluding, our mission is to make Dasharo product lines as open as possible under existing market circumstances and invest in liberating remaining pieces of the ecosystem. For the Dasharo ecosystem we always use OSS and OSHW.
btn icon Who makes Dasharo?

Copied

Dasharo logo Dasharo is created by experienced embedded firmware engineers from 3mdeb. The team of world-class experts in creating secure firmware, publicly recognized by industry leaders (for more information check our Press Release website). The significant amount of code of the Dasharo ecosystem comes from the Open Source Firmware community of which we are proud members always evangelizing about FOSS and giving back as much as we can.
btn icon How can I learn more about Dasharo?

Copied

Dasharo logo If you want to know more about how Dasharo works, visit if you want to get details about particular features, visit If you want to see, where Dasharo can be already found, check our use cases If you want to talk and ask questions, contact us or book a meeting online.
btn icon What is the difference between Dasharo and coreboot?

Copied

Dasharo logo coreboot is an open source, extended firmware framework dedicated to embedded systems and modern computers. While is increasingly popular due to its adoption (e.g. Chromebook series), its availability is still limited. coreboot in Dasharo may play the role of a main component, implemented along with chosen Dasharo features, payloads, OS and CI/CD support. But coreboot is only a framework and does not produce a fully-featured BIOS firmware solution.For example, Dasharo easily can work well with LinuxBoot, UEFI/edk2, oreboot and others.
btn icon What in case of potential sudden vulnerabilities during maintenance period?

Copied

Dasharo logo In case of any suddenly discovered vulnerabilities, according to Dasharo Maintenance Agreement, we will provide you with emergency release to prevent your platform from the potential threat. If you want to know more – contact us.
btn icon What OS do I have to choose for my Dasharo Platform?

Copied

Dasharo logo You can choose any OS you wish to. The most common are Windows and Linux distributions. Please note Dasharo supports also various hypervisors and embedded operating systems.
btn icon What about the ownership rights?

Copied

Dasharo logo We do believe that taking ownership of firmware and passing it on when needed is critical to platform security. Existing BIOS firmware solutions make this process difficult— or impossible — to perform. Dasharo helps hardware vendors and their customers in making the firmware re-ownership process secure and trustworthy by providing required cryptographic primitives. We believe that there are two state-of-the-art solutions of the problem:
btn icon Is there a Dasharo community?

Copied

Dasharo logo Users demand more communication and interaction with vendors. Communication standards that worked in the past—for presenting incremental changes in firmware—are insufficient now. When it is not provided, informal and unofficial channels will emerge. We direct and coordinate support through communication channels e.g. vendor, OS and firmware forums, Github/Gitlab issue trackers, social media, Slack/Gitter, and similar real-time media.
btn icon What will be the difference in user experience between Dasharo and traditional firmware?

Copied

Dasharo logo The average user doesn’t know how to update their BIOS firmware. This is because of lack of support, lack of long-term, regular releases, and finally, lack of explicit documentation with clear manuals. Firmware is considered part of hardware and this is the paradigm which is changing right now. Innovations around the releases are summarized, but without information concerning maintenance details. Dasharo's primary focus is features set, but long term we plan to offer customers product-dedicated GUI, continuous integration with regular releases supported by user-friendly documentation, support channels and video manuals. Additional information about your Dasharo product releases, features, development and news can be provided in the form of newsletter campaigns and blog posts created directly by our specialists. The development of your Dasharo firmware can be tracked through Dasharo Regression Test Results website.
btn icon Do I need to have my platform already chosen to request Dasharo?

Copied

Dasharo logo No, you don’t. Dasharo is a complete ecosystem of tools and components that are crucial to create, adapt and maintain firmware. Platform architecture and microarchitecture largely determines which components can be implemented. If you have a platform you can get a quote[ref] or, if not you can contact us, to gain detailed information about the possible solutions.
btn icon What Dasharo consists of?

Copied

Dasharo logo Dasharo is the common effect of R&D effort, transparent validation, heavy attestation, dedicated components, reference OS, long maintenance, marketing support and enthusiasm for security and open source solutions.
btn icon How can I provide my clients with detailed release information?

Copied

Dasharo logo
  • Each Dasharo release contains a binary file, a SHA256 hash of a binary file and a signed hash with a Dasharo release key
  • Each Dasharo release includes a test report
  • Dasharo generic test procedures from a given segment are described in the documentation
  • Dasharo specific test procedures are delivered in the form of a PDF document with a release
  • Each Dasharo release includes an integrity and signature verification procedure
btn icon How can I know about the quality of Dasharo firmware?

Copied

Dasharo logo
  • Each release of Dasharo includes a version compatible with Semantic Versioning 2.0.0: visit
  • Each Dasharo release includes: a release note compliant with the Keep A Changelog 1.0.0 specification: visit
  • Each Dasharo release contains a detailed description of the components version and a link to the scope of changes introduced since the last release

modules iconPayment

btn icon How much does Dasharo cost?

Copied

Dasharo logo Get a quote, to get some detailed information.
btn icon How can I buy Dasharo?

Copied

Dasharo logo Contact us to set the details of your Dasharo product. Book a call or leave a message so we will call you back.
btn icon What is the payment policy and who pays for Dasharo?

Copied

Dasharo logo Typically, firmware solutions are sold through royalty payment or subscription-based models. The first option relies on the volume of offered products, what effectively eliminates industries with low volume but high-value platforms e.g. medical robots. Subscription-based models, although better, are still tied to firmware solution providers and similarly lead to all the scope of negative effects of vendor lock-in. Dasharo’s pricing model does not rely on volume and since most components are open-source, you can always change vendor and re-own your firmware code. Dasharo can be purchased by OEM/ODM providers, community crowdfunding, individuals, companies that are looking for dedicated/confidential firmware solutions. To get more dedicated payment information, fill Get a quote.

modules iconPlatforms

btn icon How are Dasharo firmware updates requested?

Copied

Dasharo logo Firmware release cycle is set at the early product development stage and according to the individual case. Updates can vary widely, but one common schedule would be delivering updates to users every three to six months depending on the Open Source Core Framework Software release cycle. We also support emergency releases occurring in case of sudden vulnerabilities as well as customer on-demand builds.
btn icon What platforms/microarchitectures are supported?

Copied

Dasharo logo Dasharo is not limited by the processor architecture or hardware platform. We support any platform with the architecture x86, ARM/Arm64, POWER or RISC-V.
btn icon What Dasharo features are supported on my platform?

Copied

Dasharo logo Features that are supported on your platform mostly depend on the architecture, microarchitecture and hardware platform design. We need to get this basic information to provide you with the list of supported features on your platform. If you don’t know this information or you don’t know what platform would be the best choice for you – contact us, we will help you in either case.
btn icon How are Dasharo firmware updates requested?

Copied

Dasharo logo Firmware release cycle is set at the early product development stage and according to the individual case. Updates can vary widely, but one common schedule would be delivering updates to users every three to six months depending on the Open Source Core Framework Software release cycle. We also support emergency releases occurring in case of sudden vulnerabilities as well as customer on-demand builds.
btn icon Are there any Dasharo product lines that support the latest hardware?

Copied

Dasharo logo Yes, we are currently working on adding Intel Comet Lake U based platform to HCL for Dasharo Firewall, Tiger Lake UP3 based platform as reference platform for Dasharo Laptop, AMD Ryzen R1505G based platform as reference platform for Dasharo Safety-Critical.
king chess icon