ヘルプ
英语(美国) | English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

HABv4: Authenticated image running XIP from serial flash

キャンセル
提案をオンにする
自動提案では、入力時に可能な一致が提案されるので検索結果を素早く絞り込むことができます。
次の結果を表示 
表示  限定  | 次の代わりに検索 
もしかして: 
解決済み
ソリューションへジャンプ

HABv4: Authenticated image running XIP from serial flash

ソリューションへジャンプ
‎02-24-2023 10:17 AM
972件の閲覧回数
spiderman
Contributor III

Suppose I am using a processor with HAB (High Assurance Boot) v4. It is i.MX RT1062, but the same can be considered for other processors with HAB as well.

Let's say I execute in place (XIP) from serial flash a signed (but not encrypted) bootable image. Therefore the HAB code in ROM should check the signature before running the application.

However, is there some mechanism preventing that someone implements spoofing on the serial bus from the flash, and thus injecting a "jump" to some malware firmware on some other area of the flash? Or even substitute instructions from inside my bootable image area?

 

0 件の賞賛
返信
1 解決策

ソリューションへジャンプ
‎03-03-2023 02:11 AM
931件の閲覧回数
jingpan
NXP TechSupport
NXP TechSupport

Hi @spiderman ,

There are three security boot level, HAB boot, HAB encrypted boot and OTFAD encrypted boot.

If it is only HAB boot, it can't prevent this kind of attack. HAB boot only verify the image is authentic. But after that, the right of control is pass to application. To prevent this attack, you can run in internal SRAM instead of XIP. HAB encrypted boot doesn't support XIP because the image is encrypted.

OTFAD is a hardware which can decrypt on-the-fly. So, the data on the SPI bus is encrypted. It can prevent such attack when XIP.

 

Regards,

Jing 

元の投稿で解決策を見る

0 件の賞賛
返信
1 返信

ソリューションへジャンプ
‎03-03-2023 02:11 AM
932件の閲覧回数
jingpan
NXP TechSupport
NXP TechSupport

Hi @spiderman ,

There are three security boot level, HAB boot, HAB encrypted boot and OTFAD encrypted boot.

If it is only HAB boot, it can't prevent this kind of attack. HAB boot only verify the image is authentic. But after that, the right of control is pass to application. To prevent this attack, you can run in internal SRAM instead of XIP. HAB encrypted boot doesn't support XIP because the image is encrypted.

OTFAD is a hardware which can decrypt on-the-fly. So, the data on the SPI bus is encrypted. It can prevent such attack when XIP.

 

Regards,

Jing 

0 件の賞賛
返信