FAQs
English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

LS1043A SRK REVOCATION

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED
Jump to solution

LS1043A SRK REVOCATION

Jump to solution
‎10-14-2020 01:12 PM
848 Views
mohamed_hamzaou
Contributor I

I'm trying to revoke SRK in an LS1043A BOARD. I have to make this revocation for a list of 1000 boards.

I am confused whether or not I should blow the fuses in the SFP’s OEM Security Policy Register (SFP_OSPR) to revoke the compromised key or just I have to update the key number indicated in the CSF header.

The problem with blowing fuse is that I need to apply 1.8V on TA_PROG_SFP to make SFP writable and this need manual action in my case so the best way is to make it through a simple remote software update.

How can I manage this case?

Labels (1)
Labels
0 Kudos
Reply
1 Solution

Jump to solution
‎10-16-2020 12:28 AM
819 Views
bpe
NXP Employee
NXP Employee


As I have already explained, there is no way to revoke am SRK without fuse programming,
which in turn requires switching PROG_SFP on and off. That is a chip-level
requirement. As of the third-party development system you mentioned, consult at
it's documentation and/or manufacturer on what features it supports and in what way.

Best Regards,
Platon

View solution in original post

0 Kudos
Reply
3 Replies

Jump to solution
‎10-14-2020 06:25 PM
835 Views
bpe
NXP Employee
NXP Employee

I would say, unless the goal is to leave the system in a non-usable state,
you need both to blow a fuse and to update image headers when
revoking a key. The former is required to mark the key as revoked, the latter
have to be done to let the system use a key that remains active to validate boot
images.

Note that NXP LS1043A-RDB is a development system. It is not designed to be used
as a field-deployed, end-user device. Such devices, if remote key revocation
is required, have to have provisions in the design to control the required
power supply lines in software.

Best Regards,
Platon

 

 

0 Kudos
Reply

Jump to solution
‎10-15-2020 01:46 AM
831 Views
mohamed_hamzaou
Contributor I

Thanks Platon for your answer but let me ask you some questions.

When you said that LS1043A-RDB is not intended for end user, I think you refer to RDB and I hope this is not the case for all LS1043A based board because I use a SoM called MPX-LS1043A2 (Microsys) based on NXP LS1043A processor.

Also, in the NXP documentation we can found that LS1043A is for industrial use also not only development: "This SoC is a purpose-built solution for small-form-factor networking and industrial applications with BOM optimizations for economic low layer PCB, lower cost power supply and single clock design."

Finally, if I understand your answer, we should have designed the SoM so that the POVDD input (TA-PROG-SFP) changes the power supply state with a software way which will allow us to revoke by simple update. So, are you sure there is no other software way to revoke as the fuses are not powered with a 1.8V input to allow blowing?
Thanks

0 Kudos
Reply

Jump to solution
‎10-16-2020 12:28 AM
820 Views
bpe
NXP Employee
NXP Employee


As I have already explained, there is no way to revoke am SRK without fuse programming,
which in turn requires switching PROG_SFP on and off. That is a chip-level
requirement. As of the third-party development system you mentioned, consult at
it's documentation and/or manufacturer on what features it supports and in what way.

Best Regards,
Platon

0 Kudos
Reply