MCUXpresso Secure Provisioning Tool (SEC) is a graphical user interface (GUI) tool covering secure boot process and Trust Provisioning capabilities, primarily aimed at microcontroller customers. It provides unified GUI front-end over existing command-line tools (cst, pfr, tpconfig, tphost). What is new in the v9.0.1 release? Added support for MCF56816xx/7xx/8xx processors Added support for MCX N23x and MCX A14x / A15x processors Added support for MWCT2x12/D2 processors Added support for NHS52S04 processor Added support for MCUboot - open source secondary bootloader Additional images can be used for most of the processors (except for KW45 and K32W processors) Exported OTP/PFR/IFR configuration now contains page name, that is validated during the import. Firmware version supported for LPC55Sxx and i.MX RTxxx processors; for RT118x it is available only for signed images Minimal firmware version can be now specified in firmware configuration dialog Added support for build, write and manufacturing script hooks Removed limitation for key chain length for LPC55S6x and i.MX RTxxx processors; for other LPCs changed to warning Added support for FlexSPI instance selection for FlexSPI NAND for i.MX RT116x/7x Supported key revocation constraint for LPC55S3x, MCX N1xx, RW61x, KW45 and K32W processors The MBI image is partially erased before executing Device HSM, so it does not boot after reset. Applies for MCX N10, MCX N11, LPC55S3x, RW61x and MWCT2x12 In the installation layout, created "sample_data" sub-folder (soft link), it contains sample binary applications, signature provider examples, trust zone, XMCD and DCD configuration templates Signature provider:   - added support of sending only hash of the data for signing   - incompatible change in encoding of sending public keys, public keys are encoded in the standard key encodings (pem, der, nxp) instead of hex format Integrated NXP Secure Provisioning SDK 2.2.x with the following highlighted changes:  - new tools: nxpmemcfg, dk6prog, el2go, nxpwpc i.MX RT1050/6x: eMMC supported RW61x: Device HSM trust provisioning now required Device HSM loader from restricted data package Removed support for JLink and PEmicro debug libraries; all debug probes are now supported via pyOCD Added CLI tools: imgtool and uuu CLI: added support to save or change workspace settings and specify additional images Fixed $check_fw_versions SB2.1 high level commands for SB editor Fixed default flash (W25Q512NWEQ) for i.MX RT117x based on flash used on RT117x-EVKB Fixed key used to sign flashloader for i.MX RT10xx and RT116x/7x - changed from the first key to the selected key Fixed flashloader for i.MX RT1181/82 processors Note: v9.0.1 release fixes several customers issues reported for SEC v9   Downloads  To download the installer, please login to our download site via: https://nxp.com/mcuxpresso/secure   Useful links: Release Notes: MCUXpresso Secure Provisioning Tool (SEC) v9.0.1 release notes Fact Sheet: MCUXpresso Secure Provisioning Tool Fact Sheet 

MCUXpresso Secure Provisioning Tool (SEC) is a graphical user interface (GUI) tool covering secure boot process and Trust Provisioning capabilities, primarily aimed at microcontroller customers. It provides unified GUI front-end over existing command-line tools (cst, pfr, tpconfig, tphost). What is new in the v8 release? - LPC55S3x, KW45xx, K32W1xx: added support for images executed in RAM (xip images) - Added support for MCXN9xx/MCXN5xx/MCXA14x/MCXA15x processors - Added support for i.MX RT118x processors with new option to include additional images into the build - RT1181 and RT1182 processors are not available in the release time, the tool was tested on preproduction silicon only - Added support for RW61x processors (including shadow registers) - Added support for SB 2.1 Editor, supported for i.MX RTxxx and LPC55Sxx processors - Added option to configure signature provider via custom web server - Added option to specify separate FCB files for flash programming and runtime - Supported ECC keys for i.MX RT116x/7x - i.MX RT11xx bootable image can be used as source image for the build (previously this was only for RT10xx) - Added support for multiple monitors - Integrated NXP Secure Provisioning SDK 2.x with the following highlighted changes: - elftosb tool removed, replaced by nxpimage; nxpkeygen tool replaced by nxpcrypto - updated changes in command line arguments - several additional incompatible changes in configuration files - LPC55S3x, KW45xx, K32W1xx: spsdk/nxpkeygen tool replaced by spsdk/nxpcrypto - Removed legacy tools arm-none-eabi-objcopy, blhost, sdphost, elftosb, image_enc and cst (fully replaced by spsdk tools) - New installer for Mac OS with Apple M processor (previously Intel processor only) - Windows: The workspace can be now located on a drive with a letter other than the letter of the installed application.   Downloads  To download the installer, please login to our download site via: https://nxp.com/mcuxpresso/secure   Useful links: Release Notes: MCUXpresso Secure Provisioning Tool (SEC) v8 release notes Fact Sheet: MCUXpresso Secure Provisioning Tool Fact Sheet 

MCUXpresso Secure Provisioning Tool (SEC) is a graphical user interface (GUI) tool covering secure boot process and Trust Provisioning capabilities, primarily aimed at microcontroller customers. It provides unified GUI front-end over existing command-line tools (elftosb, blhost, sdphost, cst, pfr, tpconfig, tphost). What is new in the v7 release? Smart card trust provisioning supported for LPC55S36 processor Smart card trust provisioning supported only for smart card 1.2 or higher Re-designed configuration of boot memory; added support to user presets and custom protected area Dual image (ping/pong) boot newly support extended to LPC55(S)3x, KW45xx, K32W1xx, and RT116x/7x Added support for SB 3.1 editor for LPC55S3x, KW45xx and K32W1xx processors Improved configuration of IFR/ROMCFG for KW45xx and K32W1xx processors, now configured per 16-byte blocks i.MX RT116x/7x: Legacy elftosb and image_enc tools replaced by spsdk/nxpimage i.MX RT116x/7x: Updated flashloader and added detection of locked fuses (via blhost get-property 31) i.MX RT116x/7x: eMMC supported i.MX RT11xx: XMCD supported, either link to configuration file or the via simplified GUI editor i.MX RT10xx: added support for SPI NAND Improved grouping of processor in "New Workspace" dialog Integrated NXP Secure Provisioning SDK 1.10.2   Downloads  To download the installer, please login to our download site via: https://nxp.com/mcuxpresso/secure   Supported Operating Systems: Microsoft(R) Windows(R) 10 (64-bit) Mac OS 12.4 Monterey (Intel x86_64) Ubuntu 22.04 LTS 64 bit, with "OpenSSL 1.1.1f 31 Mar 2020"; GNOME recommended   Known issues and limitations: LPC55S3x, the firmware version on the Build tab is limited to a 16bit value due to a SEC and SPSDK integration limitation. LPC55S3x, KW45, K32W: if less than 4 ROT keys are used, RKTH is wrongly calculated and a signed image and/or SB file cannot be used; as a workaround always use 4 ROT keys (default settings) For more information, see chapter Troubleshooting in the documentation.   Useful links: Release Notes: MCUXpresso Secure Provisioning Tool (SEC) v7 release notes Fact Sheet: MCUXpresso Secure Provisioning Tool Fact Sheet