ヘルプ
英语(美国) | English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

POLICY_OBJ_ALLOW_DELETE and Reset

キャンセル
提案をオンにする
自動提案では、入力時に可能な一致が提案されるので検索結果を素早く絞り込むことができます。
次の結果を表示 
表示  限定  | 次の代わりに検索 
もしかして: 
解決済み
ソリューションへジャンプ

POLICY_OBJ_ALLOW_DELETE and Reset

ソリューションへジャンプ
‎12-28-2022 09:08 AM
1,491件の閲覧回数
psvz
Contributor III

Hi

If I attached POLICY_OBJ_ALLOW_DELETE = False to a key object - would it help to preserve it over ssscli se05x reset?

ラベル(1)
ラベル
0 件の賞賛
返信
1 解決策

ソリューションへジャンプ
‎12-29-2022 08:14 AM
1,480件の閲覧回数
psvz
Contributor III

Hi Kan

I am trying to achieve the opposite effect. I want a key that I have provisioned to stay in secure element forever and couldn't be deleted - same way as NXP keys and certificates. Is it possible?

元の投稿で解決策を見る

0 件の賞賛
返信
5 返答(返信)

ソリューションへジャンプ
‎01-04-2023 11:57 AM
1,434件の閲覧回数
psvz
Contributor III

Se05x_API_DeleteAll() fails if I open session with kSSS_AuthType_None. Do you know if session with kSSS_AuthType_SCP03 would work? any working demo using Se05x_API_DeleteAll()?

0 件の賞賛
返信

ソリューションへジャンプ
‎01-04-2023 07:01 PM
1,431件の閲覧回数
Kan_Li
NXP TechSupport
NXP TechSupport

Hi @psvz ,

 

Actually this command can only be used in the session authenticated using the
credential with index RESERVED_ID_FACTORY_RESET, and this Auth ID might be not available in your device, but you may provision it with the help of ssscli tool. 

Please kindly refer to https://www.nxp.com/webapp/Download?colCode=AN12543 for more details.

 

Have a great day,
Kan


-------------------------------------------------------------------------------
Note:
- If this post answers your question, please click the "Mark Correct" button. Thank you!
- We are following threads for 7 weeks after the last post, later replies are ignored
Please open a new thread and refer to the closed one, if you have a related question at a later point in time.
-------------------------------------------------------------------------------

0 件の賞賛
返信

ソリューションへジャンプ
‎12-28-2022 07:04 PM
1,484件の閲覧回数
Kan_Li
NXP TechSupport
NXP TechSupport

Hi @psvz ,

 

Yes, you can do that, and usually we set up POLICY_OBJ_ALLOW_DELETE = True for some Auth ID to a key object so that you may still perform the deletion in some cases.

 

Hope that makes sense,

 

Have a great day,
Kan


-------------------------------------------------------------------------------
Note:
- If this post answers your question, please click the "Mark Correct" button. Thank you!
- We are following threads for 7 weeks after the last post, later replies are ignored
Please open a new thread and refer to the closed one, if you have a related question at a later point in time.
-------------------------------------------------------------------------------

0 件の賞賛
返信

ソリューションへジャンプ
‎12-29-2022 08:14 AM
1,481件の閲覧回数
psvz
Contributor III

Hi Kan

I am trying to achieve the opposite effect. I want a key that I have provisioned to stay in secure element forever and couldn't be deleted - same way as NXP keys and certificates. Is it possible?

0 件の賞賛
返信

ソリューションへジャンプ
‎01-03-2023 12:12 AM
1,444件の閲覧回数
Kan_Li
NXP TechSupport
NXP TechSupport

Hi @psvz ,

 

No , I don't think it is possible, you know, the DeleteAll command may delete all secure objects which are not trust provisioned by NXP.

Have a great day,
Kan


-------------------------------------------------------------------------------
Note:
- If this post answers your question, please click the "Mark Correct" button. Thank you!
- We are following threads for 7 weeks after the last post, later replies are ignored
Please open a new thread and refer to the closed one, if you have a related question at a later point in time.
-------------------------------------------------------------------------------

0 件の賞賛
返信