https://community.nxp.com/t5/S32K/CSEC-S32K1/m-p/1561584#M19137 <P>Hi&nbsp;<a href="https://community.nxp.com/t5/user/viewprofilepage/user-id/197531">@QJ_HAPPY</a>&nbsp;</P> <P>Each key has 6 flag associated with it, one of these is Key Usage Flag (KEY_USAGE), that determines if a key is used for encryption/decryption or for CMAC generation/verification.<BR />Regarding of how to return to the factory settings when CSE is enabled, the only way to restore it is with a mass erase, for this you need to run CMD_DBG_CHAL and CMD_DBG_AUTH commands to destroy the partition and then you can run mass erase. But if any CSEc key is ‘write-protected’ the above procedure will not work thus mass erase cannot be launched.</P> <P>Take a look to these application notes, they will be useful for you.<BR /><A href="https://www.nxp.com/webapp/Download?colCode=AN5401" target="_blank" rel="noopener">Getting Started with CSEc Security Module</A>&nbsp;</P> <P><A href="https://www.nxp.com/docs/en/application-note/AN12130.pdf?_gl=1*1b60mfs*_ga*MTMwNjI3NjYxOC4xNjY5NzU4NjQ0*_ga_WM5LE0KMSH*MTY2OTc1ODY0My4xLjEuMTY2OTc2MjA0Ni4wLjAuMA.." target="_self">Production Flash Programming Best Practices for S32K1xx MCUs</A>&nbsp;</P> <P>&nbsp;</P> <P>B.R</P> <P>VaneB</P> Tue, 29 Nov 2022 23:42:52 GMT VaneB 2022-11-29T23:42:52Z https://community.nxp.com/t5/S32K/CSEC-S32K1/m-p/1560468#M19108 <P>I want to ask how do I determine whether the key of CSEC is encrypted when I use CSEC, because I cannot perform factory settings, and how do I determine whether the key is encrypted?thanks</P> Mon, 28 Nov 2022 09:01:44 GMT https://community.nxp.com/t5/S32K/CSEC-S32K1/m-p/1560468#M19108 QJ_HAPPY 2022-11-28T09:01:44Z https://community.nxp.com/t5/S32K/CSEC-S32K1/m-p/1561584#M19137 <P>Hi&nbsp;<a href="https://community.nxp.com/t5/user/viewprofilepage/user-id/197531">@QJ_HAPPY</a>&nbsp;</P> <P>Each key has 6 flag associated with it, one of these is Key Usage Flag (KEY_USAGE), that determines if a key is used for encryption/decryption or for CMAC generation/verification.<BR />Regarding of how to return to the factory settings when CSE is enabled, the only way to restore it is with a mass erase, for this you need to run CMD_DBG_CHAL and CMD_DBG_AUTH commands to destroy the partition and then you can run mass erase. But if any CSEc key is ‘write-protected’ the above procedure will not work thus mass erase cannot be launched.</P> <P>Take a look to these application notes, they will be useful for you.<BR /><A href="https://www.nxp.com/webapp/Download?colCode=AN5401" target="_blank" rel="noopener">Getting Started with CSEc Security Module</A>&nbsp;</P> <P><A href="https://www.nxp.com/docs/en/application-note/AN12130.pdf?_gl=1*1b60mfs*_ga*MTMwNjI3NjYxOC4xNjY5NzU4NjQ0*_ga_WM5LE0KMSH*MTY2OTc1ODY0My4xLjEuMTY2OTc2MjA0Ni4wLjAuMA.." target="_self">Production Flash Programming Best Practices for S32K1xx MCUs</A>&nbsp;</P> <P>&nbsp;</P> <P>B.R</P> <P>VaneB</P> Tue, 29 Nov 2022 23:42:52 GMT https://community.nxp.com/t5/S32K/CSEC-S32K1/m-p/1561584#M19137 VaneB 2022-11-29T23:42:52Z