I.MX8Plus Encrypted Storage Keys

KadirY · ‎09-30-2024

Greetings,

I want to use the CAAM to implement encrypted storage to my system. So far, my understanding is that the CAAM is capable of encryption and decryption for the storage data. However, I couldn't find whether I can control the CAAM keys or not. During the configuration phase of the CAAM, is it possible for me to at least see the key pairs so that I do not necessarily need the I.MX8 to decrypt my data?

My goal is to be able to decrypt the content that the i.mx8 platform has encrypted and stored into some flash at some other system (say my personal pc).

Thanks in advance.

Manuel_Salas · ‎09-30-2024

Hello @KadirY

I hope you are doing well.

Please refer to the AN12714 i.MX Encrypted Storage Using CAAM Secure Keys.

This document provides steps to run a transparent storage encryption at block level using DM Crypt taking advantage of the secure key feature provided by i.MXs Cryptographic Accelerator and Assurance Module (CAAM). The document applies to all i.MX SoCs having CAAM module.

Best regards,

Salas.

在原帖中查看解决方案

Manuel_Salas · ‎09-30-2024

Hello @KadirY

I hope you are doing well.

Please refer to the AN12714 i.MX Encrypted Storage Using CAAM Secure Keys.

This document provides steps to run a transparent storage encryption at block level using DM Crypt taking advantage of the secure key feature provided by i.MXs Cryptographic Accelerator and Assurance Module (CAAM). The document applies to all i.MX SoCs having CAAM module.

Best regards,

Salas.

I.MX8Plus Encrypted Storage Keys

I.MX8Plus Encrypted Storage Keys

i.MX 8M | i.MX 8M Mini | i.MX 8M Nano

Security