- Forums
- Product Forums
- General Purpose MicrocontrollersGeneral Purpose Microcontrollers
- i.MX Forumsi.MX Forums
- QorIQ Processing PlatformsQorIQ Processing Platforms
- Identification and SecurityIdentification and Security
- Power ManagementPower Management
- Wireless ConnectivityWireless Connectivity
- RFID / NFCRFID / NFC
- Advanced AnalogAdvanced Analog
- Neural Processing UnitsNeural Processing Units
- MCX Microcontrollers
- S32G
- S32K
- S32V
- MPC5xxx
- Other NXP Products
- S12 / MagniV Microcontrollers
- Powertrain and Electrification Analog Drivers
- Sensors
- Vybrid Processors
- Digital Signal Controllers
- 8-bit Microcontrollers
- ColdFire/68K Microcontrollers and Processors
- PowerQUICC Processors
- OSBDM and TBDML
- S32M
- S32Z/E
-
- Solution Forums
- Software Forums
- MCUXpresso Software and ToolsMCUXpresso Software and Tools
- CodeWarriorCodeWarrior
- MQX Software SolutionsMQX Software Solutions
- Model-Based Design Toolbox (MBDT)Model-Based Design Toolbox (MBDT)
- FreeMASTER
- eIQ Machine Learning Software
- Embedded Software and Tools Clinic
- S32 SDK
- S32 Design Studio
- GUI Guider
- Zephyr Project
- Voice Technology
- Application Software Packs
- Secure Provisioning SDK (SPSDK)
- Processor Expert Software
- Generative AI & LLMs
-
- Topics
- Mobile Robotics - Drones and RoversMobile Robotics - Drones and Rovers
- NXP Training ContentNXP Training Content
- University ProgramsUniversity Programs
- Rapid IoT
- NXP Designs
- SafeAssure-Community
- OSS Security & Maintenance
- Using Our Community
-
- Cloud Lab Forums
-
- Knowledge Bases
- ARM Microcontrollers
- i.MX Processors
- Identification and Security
- Model-Based Design Toolbox (MBDT)
- QorIQ Processing Platforms
- S32 Automotive Processing Platform
- Wireless Connectivity
- CodeWarrior
- MCUXpresso Suite of Software and Tools
- MQX Software Solutions
- RFID / NFC
- Advanced Analog
- Neural Processing Units
-
- NXP Tech Blogs
- Home
- :
- Translated Content
- :
- Multi Source Translation Content
- :
- 2385929_en-US
2385929_en-US
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
2385929_en-US
2385929_en-US
Introduction
In a previous article, we demonstrated how to import an RFC3394-wrapped key blob into ELS by manually performing the following operations:
- Deriving
NXP_DIE_KEK_SKusing CKDF-SP800-108 - Importing the wrapped blob with
mcuxClEls_KeyImport_Async() - Deleting the temporary KEK after import
While this approach provides full visibility into the underlying ELS operations, applications using the PSA Crypto API can achieve the same result with significantly less code.
This article demonstrates how to use psa_import_key() together with PSA_KEY_LOCATION_S50_RFC3394_STORAGE to import a wrapped key blob stored in OTP. The PSA Oracle driver transparently handles the secure key loading sequence, including KEK derivation, key unwrapping, ELS slot management, and cleanup.
Prerequisites
- FRDM-RW612
- Key blob wrapped using RFC3394 format using HSM_STORE_KEY
- Key blob programmed to OTP fuses using LoadKeyBlob command.
Required Headers:
#include "psa/crypto.h"
#include "mcuxClPsaDriver_Oracle_Interface_key_locations.h"
#include "fsl_romapi_otp.h"Step 0 – Read the Wrapped Key Blob from OTP
otp_fuse_read(starting_fuse_index + i, &fuse_word);These words are assembled into a contiguous buffer:
blob_data[i * 4 + 0] = (fuse_word >> 0) & 0xFF;
blob_data[i * 4 + 1] = (fuse_word >> 8) & 0xFF;
blob_data[i * 4 + 2] = (fuse_word >> 16) & 0xFF;
blob_data[i * 4 + 3] = (fuse_word >> 24) & 0xFF;The resulting buffer contains the RFC3394 wrapped key.
Step 1 – Configure PSA Key Attributes
Before importing the blob, PSA key attributes must describe how the key should be managed.
The most important configuration is the key location:
psa_set_key_lifetime(
&attributes,
PSA_KEY_LIFETIME_FROM_PERSISTENCE_AND_LOCATION(
PSA_KEY_PERSISTENCE_VOLATILE,
PSA_KEY_LOCATION_S50_RFC3394_STORAGE));The PSA_KEY_LOCATION_S50_RFC3394_STORAGE location informs the Oracle driver that:
- The provided data is an RFC3394-wrapped key blob.
- The blob requires unwrapping before use.
NXP_DIE_KEK_SKmust be derived automatically during key loading.
In this example we used an AES 128-bit key. The key type and size must match the wrapped key:
psa_set_key_type(&attributes, PSA_KEY_TYPE_AES);
psa_set_key_bits(&attributes, 128);Usage permissions are then assigned:
psa_set_key_usage_flags(
&attributes,
PSA_KEY_USAGE_ENCRYPT |
PSA_KEY_USAGE_DECRYPT);
Finally, specify the algorithm:
psa_set_key_algorithm(
&attributes,
PSA_ALG_ECB_NO_PADDING);Step 2 – Import the Wrapped Blob
The blob is imported using a single PSA API call:
psa_import_key(
&attributes,
blob_data,
blob_length,
&key_handle);For developers familiar with the low-level ELS implementation, this single call effectively replaces:
derive_nxp_die_kek_sk()
import_wrapped_key_blob()
delete_key_from_slot()At this point, PSA stores the wrapped blob and returns a key handle:
psa_key_id_t key_handle;The returned handle is subsequently used for cryptographic operations.
Next Steps
At this point, the wrapped key blob has been successfully imported into the target ELS key slot, and the temporary NXP_DIE_KEK_SK has been removed. The imported key is now available for use by ELS-protected cryptographic operations without exposing the underlying key material to application software.
The next step is to validate the imported key by performing the operation it was provisioned for.
For this example, we used AES-ECB encryption:
psa_cipher_encrypt(
key_handle,
PSA_ALG_ECB_NO_PADDING,
plaintext,
sizeof(plaintext),
ciphertext,
sizeof(ciphertext),
&ciphertext_length);Step 4 – Cleanup
Once the key is no longer required, destroy it using:
psa_destroy_key(key_handle);This releases the PSA key object and allows the Oracle driver to clean up any associated secure resources.
Unlike the low-level ELS implementation, the application does not need to explicitly manage ELS keyslots.
PSA vs Direct ELS Implementation
| Direct ELS API | PSA Crypto API |
|---|---|
| Derive KEK manually | Automatic |
| Import blob manually | Automatic |
| Manage keyslots | Managed by Oracle |
| Delete temporary KEK | Automatic |
| Greater control | Simpler application code |
| Higher implementation effort | Faster integration |
Both approaches ultimately leverage the same secure hardware mechanisms within RW612. The PSA approach simply abstracts the underlying ELS operations behind a standardized cryptographic interface.