Hello Team,
This chip is pre-provisioned with a cryptographic key at the NXP fab/plant, called the MCU SECRET KEY.
It allows NXP to execute a mass-erase on the chip if the on-board application gets corrupted and the chip cannot be accessed using the normal process.
The method to use this key is not well documented as far as I know and I assume part of it confidential.
My customer expressed a concern that this key may be abused to brick the product (i.e. a tool for denial of service).
This may happen if the method to use this key becomes public domain information because of academic research or a breach at NXP.
The customer asked if there is any official statement from NXP regarding this secret key and the possibility of abuse it?
Please advise back, Thanks in advance.
Best regards,
Shai
Hello Shai,
The information you have is incorrect.
The key you are referring to is unique for each device and is unknown to NXP or any device user, as it is generated "on chip" and never exposed.
Furthermore, it cannot be used to "mass erase" the device.
If you want / need more information, please send a private message.
Hope this clarifies.
-Fabrice