CAAM Private Key generation

bernardorodrigu · ‎12-06-2016

Hello everyone.

I'm just starting my development with a Toradex Apalis i.MX6.

I need to implement a public/private key signature scheme for signing legally relevant files in my system.

Is there a way for me to generate a random private key with the CAAM in such a way that it can never be known outside the module, while the public key is returned?

Does cryptodev support that?

Thanks.

Yuri · ‎12-06-2016

Hello

IMX6 D/Q/S/DL CAAM does not support public key cryptography.

Have a great day,
Yuri

-----------------------------------------------------------------------------------------------------------------------
Note: If this post answers your question, please click the Correct Answer button. Thank you!
-----------------------------------------------------------------------------------------------------------------------

bernardorodrigu · ‎12-09-2016

Hello Yuri.

I'm reading the "Security Reference Manual for i.MX 6Dual, 6Quad, 6Solo, and 6DualLite Families of Applications Processors".

On "Table B-76. Compile Time Parameters Register - Field Descriptions", page 538, field KG_DS set to 1 means "CAAM implements specialized support for Public Key Generation and Digital Signatures."

So I'm confused by your answer.

Regards, Bernardo.

Yuri · ‎12-11-2016

Hello,

Some information from general CAAM specs can be present in the SRM.
Say, i.MX6 UL CAAM supports public key cryptography.

Please use the feature list of the i.MX6 D/Q CAAM.

Regards,

Yuri.

CAAM Private Key generation

CAAM Private Key generation

i.MX6DualPlus6QuadPlus

i.MX6Quad

Linux