FAQs
English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

Secure Boot + Secure Update

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED
Jump to solution

Secure Boot + Secure Update

Jump to solution
‎10-23-2025 01:09 AM
665 Views
alereale
Contributor II

I would like uploading in RAM a signed image (included with hash and digital signature) and verifying its authentycity and integrity at secure boot time.

I don't want use an sb3 structure but a custom structure with an header (where there is hash and digital signature) and the image to be started.

Can I use sss api in my custom bootloader? I cannot find any examples for verifying my image with KW45 and EdgeLock.

Thank you

Alessandro

0 Kudos
Reply
1 Solution

Jump to solution
‎10-23-2025 01:45 AM
643 Views
liborukropec
NXP Employee
NXP Employee

Hi Alessandro,

 

by sss API you mean ROM API? Probably this question should go to SDK forum, if you miss some example (in SDK).

 

Regards,

Libor

View solution in original post

0 Kudos
Reply
1 Reply

Jump to solution
‎10-23-2025 01:45 AM
644 Views
liborukropec
NXP Employee
NXP Employee

Hi Alessandro,

 

by sss API you mean ROM API? Probably this question should go to SDK forum, if you miss some example (in SDK).

 

Regards,

Libor

0 Kudos
Reply
%3CLINGO-SUB%20id%3D%22lingo-sub-2191314%22%20slang%3D%22en-US%22%20mode%3D%22CREATE%22%3ESecure%20Boot%20%2B%20Secure%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2191314%22%20slang%3D%22en-US%22%20mode%3D%22CREATE%22%3E%3CP%3EI%20would%20like%20uploading%20in%20RAM%20a%20signed%20image%20(included%20with%20hash%20and%20digital%20signature)%20and%20verifying%20its%20authentycity%20and%20integrity%20at%20secure%20boot%20time.%3C%2FP%3E%3CP%3EI%20don't%20want%20use%20an%20sb3%20structure%20but%20a%20custom%20structure%20with%20an%20header%20(where%20there%20is%20hash%20and%20digital%20signature)%20and%20the%20image%20to%20be%20started.%3C%2FP%3E%3CP%3ECan%20I%20use%20sss%20api%20in%20my%20custom%20bootloader%3F%20I%20cannot%20find%20any%20examples%20for%20verifying%20my%20image%20with%20KW45%20and%20EdgeLock.%3C%2FP%3E%3CP%3EThank%20you%3C%2FP%3E%3CP%3EAlessandro%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2191340%22%20slang%3D%22en-US%22%20mode%3D%22CREATE%22%20translate%3D%22no%22%3ERe%3A%20Secure%20Boot%20%2B%20Secure%20Update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2191340%22%20slang%3D%22en-US%22%20mode%3D%22CREATE%22%3E%3CP%3EHi%20Alessandro%2C%3C%2FP%3E%0A%3CBR%20%2F%3E%0A%3CP%3Eby%20sss%20API%20you%20mean%20ROM%20API%3F%20Probably%20this%20question%20should%20go%20to%20SDK%20forum%2C%20if%20you%20miss%20some%20example%20(in%20SDK).%3C%2FP%3E%0A%3CBR%20%2F%3E%0A%3CP%3ERegards%2C%3C%2FP%3E%0A%3CP%3ELibor%3C%2FP%3E%3C%2FLINGO-BODY%3E