# Qualcomm WES

Qualcomm WES is a suite of trusted services, rooted in hardware, which securely connects and manages devices.

It offers the following services:

- Feature licensing enables device features identified by a feature ID and an alias feature name. These features are enabled by installing the corresponding feature licenses or certificates.
- Device attestation provides cryptographically signed and encrypted data items that describe the security state of the device and its software. These data items are useful for risk engines and other similar applications.
- Secure provisioning enables the generation and use of cryptographic keys that are secured using unique device keys. These keys are used to:

    - Securely provision data to the device post-sale and over-the-air
(OTA).
    - Sign data on the device.

## Next steps

- To learn about TrustZone and security framework, see [Security architecture](https://docs.qualcomm.com/doc/80-70018-11/topic/architecture.html#architecture).
- To install or upgrade QCS5430 SoftSKU feature packs, see: [Install or upgrade SoftSKU feature packs](https://docs.qualcomm.com/doc/80-70018-11/topic/upgrade-qualcomm-wes-feature-pack.html#upgrade-qualcomm-wes-feature-pack).
- To develop applications that offer hardware-based attestation, zero-touch device provisioning, and chipset feature management, see: [Qualcomm Linux Wireless Edge Services Guide](https://docs.qualcomm.com/bundle/resource/topics/80-70018-11B/overview.html). This feature is available to licensed users with authorized access.

Last Published: Apr 10, 2025

[Previous Topic
Security hardening](https://docs.qualcomm.com/bundle/publicresource/80-70018-11/topics/security-hardening.md) [Next Topic
Security architecture](https://docs.qualcomm.com/bundle/publicresource/80-70018-11/topics/architecture.md)