I am researching a possible project where I need to use read only media to boot from and run the main OS from. Think of a LiveCD type of setup. This project will be a network appliance and I am looking for ways to make the OS read only since this appliance will be accessible to hackers.
Basically the intent is that a PC will communicate with the board through a serial console or over the OTG port. The board will be connected to the network and I need the OS to be RO to prevent unauthorized modifications to the OS.
I am using the idea of a LiveCD as my model.
For this particular application I need less than 8gig of storage.
In essence the PC will monitor the i.MX6 board via the otg/console connection and when it sees no action from the board it will attempt to reset the board. I want the OS up and running very quickly but need the protection of a RO partition as mentioned. I am thinking some sort of mechanism where the OS can be updated via flashing or have some sort of hardware write protect switch so the OS media would be RO except when I desire to update it.