filancore Over-the-air is a firmware update security solution for IoT and embedded devices that uses verifiable credentials to authenticate and validate firmware packages during the over-the-air (OTA) update process. The platform generates a verifiable credential that is attached to a firmware package, confirming its authenticity and immutability. On the device side, received updates are validated against the provided verifiable credential before the firmware is applied, ensuring that only original and untampered firmware is installed. Device integration is facilitated through a YOCTO layer, which handles the updating process on supported embedded Linux devices. The solution eliminates the need for developer-specific PKI certificates by using built-in verifiable credentials instead. filancore Over-the-air uses standard identity-based OIDC flows including SIOPv2, OIDC4VCI, and OIDC4VP, making it interoperable with common identity standards. It integrates with the filancore Sentinel product for device, identity, and credential management, and with filancore Ankrypt, an IoT-ready SDK for issuing and verifying credentials.