Hi @xiongsl
SDK won't support RSA2048 because there's no such hardware feature on CSEc.
And there's no way to store such key to the CSEc. Nonvolatile keys can't be exported from CSEc. This would violate SHE specification. Only RAM key can be exported if plain key attribute is cleared.
So, the only option I can see in case of S32K1 device is to emulate this function by software (like wolfssl) and store the key in normal flash.
Regards,
Lukas