MCUBoot and Edgelock Secure Enclave on an MCXN947 using Zephyr

ClarkS · ‎06-25-2025

I would like to use Zephyr's open source MCUBoot module on an IoT project using the FRDM-MCXN947 board, but also use the Edgelock Secure Enclave to increase key security. Am I correct that this would be difficult because it would require modification of MCUBoot source in order to get MCUBoot to use the Secure Enclave?

If I am correct about this, is it likely Zephyr / MCUBoot will use the Edgelock secure enclave in the future?

Am I correct that this improvement would provide a significant increase in security? Or should I be content with the key handling in standard Zephyr MCUBoot?

Harry_Zhang · ‎06-27-2025

Hi @ClarkS

Yes, i think using EdgeLock SE with MCUBoot is currently not trivial and would require source modifications or a custom integration layer.

I will forward your requirements to our relevant team. Thank you for your suggestion.

BR

Harry

View solution in original post

Harry_Zhang · ‎06-27-2025

Hi @ClarkS

Yes, i think using EdgeLock SE with MCUBoot is currently not trivial and would require source modifications or a custom integration layer.

I will forward your requirements to our relevant team. Thank you for your suggestion.

BR

Harry

ClarkS · ‎08-05-2025

@Harry_Zhang Do you have any feedback on if or when this might be accomplished? If it’s not soon, do you have any suggestions on how to use MCUBoot in Zephyr and maintain the best key security?

Best wishes.!

Clark