I am currently trying to implmement Secure Boot for an LS1017A. I discovered that the SoC is labeled as "without encryption". In the LS1028A Security Reference Manual section 3.2 it says that the CHA (Cryptographic hardware acceleration) module still supports some basic algortihms also on SoCs without encryption.
I am a bit unsure now if this module is necessary for Secure Boot or what the difference to the CAAM module is.
In any case, I would like to know: Is Secure boot is still possible on devices labeled as "without encryption"?
For secure boot to work, customer needs to order the "E" version, which has the SEC engine enabled. The non-"E" part does not work with secure boot.and this condition applies to all layerscape series.
Hello @jclsn,
I would like to inform you that I'm working on your question, I will let you know as soon as I have an update.
Thank you so much for your patience
Regards,
Sebastian