OmniTrust and Synopsys Push Embedded Security Earlier Into the Software Lifecycle

As automotive systems and industrial devices continue their shift toward software-defined architectures, a longstanding security gap is becoming harder to ignore. Critical protections like secure boot validation and firmware integrity checks often arrive late in the development cycle, typically after physical hardware is available. That delay has left development teams exposed to costly rework, integration risks, and potential vulnerabilities that slip through too late to fix efficiently.

A new collaboration between OmniTrust and Synopsys aims to move those security controls much earlier in the process. By integrating embedded trust capabilities directly into virtual electronic control unit environments, the companies are enabling developers to validate secure boot behavior long before hardware enters the equation.

The approach reflects a broader industry transition toward virtualization and electronics digital twins, where software is built, tested, and refined in simulated environments that mirror real-world systems. While this shift has accelerated development timelines, security validation has often lagged behind, remaining tethered to physical testing stages.

By combining Synopsys’ virtual ECU tooling with OmniTrust’s embedded security framework, development teams can now run production-grade firmware inside virtual environments and simulate both normal and adversarial scenarios. This allows engineers to test how systems respond to tampered firmware, validate cryptographic signatures, and enforce trust policies as part of continuous integration workflows.

“Automotive architectures are becoming increasingly software-defined, and security validation must evolve alongside development practices,” said Marc Serughetti, Vice President in Synopsys’ Product Management & Markets Group. “Our collaboration with OmniTrust enables development teams to leverage electronics digital twins and integrate trust validation into their software development before hardware is available. Our joint customers can accelerate time to market and innovation with greater confidence in the security of their systems.”

For embedded systems developers, the ability to test secure boot processes earlier could significantly reduce downstream risks. Instead of discovering vulnerabilities during hardware integration or post-production validation, teams can identify and remediate issues during standard software testing cycles, including automated regression testing.

OmniTrust’s platform brings core capabilities such as firmware signature verification, secure boot policy enforcement, and cryptographic trust anchor management into these virtualized environments. The result is a shift toward treating security as a continuous, testable function rather than a final checkpoint.

“Secure boot and firmware authenticity are essential for system integrity, yet often checked later in development,” said Albert Rooyakkers, SVP of Business Development at OmniTrust. “Synopsys virtual ECUs enable early security validation, automated testing, and authenticated software deployment in production.”

The collaboration also has backing from major semiconductor players, including Infineon Technologies AG, which sees early-stage validation as critical to strengthening embedded ecosystems built on hardware roots of trust.

“Hardware roots of trust are foundational to modern embedded systems,” said Thomas Schneid, Head of Software, Partner & Ecosystem Management at Infineon. “Validating secured boot behavior earlier in development helps strengthen the entire ecosystem.”

The move underscores a growing recognition across the cybersecurity and embedded systems landscape. As vehicles, industrial equipment, and connected devices become more reliant on software, security can no longer be an afterthought tied to hardware readiness. Instead, it must be embedded into the same rapid, iterative workflows that define modern development.

For organizations racing to deliver software-defined products, shifting security validation left may no longer be optional. It is quickly becoming a requirement for keeping pace with both innovation and the evolving threat landscape.