ヘルプ
英语(美国) | English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

Imx6 - chain of trust implementation

キャンセル
提案をオンにする
自動提案では、入力時に可能な一致が提案されるので検索結果を素早く絞り込むことができます。
次の結果を表示 
表示  限定  | 次の代わりに検索 
もしかして: 

Imx6 - chain of trust implementation

‎02-02-2021 02:22 AM
2,218件の閲覧回数
DipinPK
Contributor II

Hi all,

I have implemented secure boot solution for our device. So, single public is used to verify both signed uboot and signed kernel.

But I need to implement chain of trust like below diagram

DipinPK_0-1612257450198.png

Here every component is verified by its unique public key that's embedded on the previous binary.

Can you help me to do that.

Thanks in advance

 

Regards

Dipin

 

 

0 件の賞賛
返信
4 返答(返信)

‎02-02-2021 04:35 AM
2,208件の閲覧回数
Yuri
NXP Employee
NXP Employee

@DipinPK 
Hello,

  Please use the following documents.

"Security Reference Manual for i.MX 6"

https://www.nxp.com/webapp/sps/download/mod_download.jsp?colCode=IMX6DQ6SDLSRM&appType=moderatedWith...

"i.MX Secure Boot on HABv4 Supported Devices"

https://www.nxp.com/docs/en/application-note/AN4581.pdf

"Encrypted Boot on HABv4 and CAAM Enabled Devices "

https://www.nxp.com/docs/en/application-note/AN12056.pdf

"i.MX ROMs Log Events"

https://www.nxp.com/docs/en/application-note/AN12853.pdf

 

https://source.codeaurora.org/external/imx/uboot-imx/tree/doc/imx/habv4/guides/mx6_mx7_secure_boot.t...

"i.MX Encrypted Storage Using CAAM Secure Keys"

https://www.nxp.com/docs/en/application-note/AN12714.pdf

 

Regards,

Yuri.

0 件の賞賛
返信

‎02-05-2021 03:12 AM
2,193件の閲覧回数
DipinPK
Contributor II

I have already implemented the secure boot feature. But need to implement the chain of trust. Using FIT images.

Can you suggest me some method for that?

タグ(1)
0 件の賞賛
返信

‎03-18-2021 02:47 AM
2,151件の閲覧回数
Yuri
NXP Employee
NXP Employee

@DipinPK 
Hello,

  we do not example with i.MX6 FIT image, sorry.

Regards,
Yuri.

0 件の賞賛
返信

‎02-24-2021 04:58 AM
2,167件の閲覧回数
DipinPK
Contributor II

What is FIT image how to create FIT images for imx6 processors

0 件の賞賛
返信