Layerscape Hardware Security Module(HSM) storage questions

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Layerscape Hardware Security Module(HSM) storage questions

Jump to solution
316 Views
jvfausto
Contributor I

Hello,

In the LSDK User Guide mentions that the SoCs can internally store keys using an HSM. "NXP SoCs such as LS1046A can store keys securely using built-in SoC capabilities - virtual HSM. With such devices, sensitive private keys never leave the device and cryptographic operations are performed on this virtual HSM"(LSDKUG-Rev21.08, CH 6.5.1).

I could not find a reference to whether it is stored using secure non-volatile storage (SNVS), or if it is stored in volatile memory requiring a battery connected such as the with the "Battery Backed Security Monitor supply". Does the SoC need to keep some voltage after powering off to keep the keys stored securely?

And just to confirm, this feature applies to all arm trusted firmware(TFA) enabled CPUs?

Labels (1)
0 Kudos
Reply
1 Solution
236 Views
Hector_Villarruel
NXP TechSupport
NXP TechSupport

Hello @jvfausto 

Hope this post finds you well,

They are stored in a non-volatile memory.

BR,

Hector V

 

View solution in original post

2 Replies
237 Views
Hector_Villarruel
NXP TechSupport
NXP TechSupport

Hello @jvfausto 

Hope this post finds you well,

They are stored in a non-volatile memory.

BR,

Hector V

 

286 Views
Hector_Villarruel
NXP TechSupport
NXP TechSupport

Hello @jvfausto 

Hope this email finds you,

This email is to inform that I keep working on the solution on this case.

I’ll keep you informed on the process,

Have a great day.
 
BR,
Hector Villarruel