Is it securely to print out CAAM keys to console?

dimtref · ‎02-09-2019

Hi, NXP

I am developing an application that runs on an imx6ul based industrial embedded computer. Linux has been built with using yocto.

Is it securely to print out to console all keys by CAAM on boot up?

...
platform caam_sm: blkkey_ex: 8 keystore units available
platform caam_sm: 64-bit clear key:
platform caam_sm: [0000] 00 01 02 03 04 0f 06 07
platform caam_sm: 64-bit black key:
platform caam_sm: [0000] 3c a8 41 75 ce eb eb 36
platform caam_sm: [0008] 0f e5 59 ba 35 ef 33 3a
platform caam_sm: 128-bit clear key:
platform caam_sm: [0000] 00 01 02 03 04 0f 06 07
platform caam_sm: [0008] 08 09 0a 0b 0c 0d 0e 0f
platform caam_sm: 128-bit black key:
platform caam_sm: [0000] 35 a4 be 55 7b e7 fd 21
platform caam_sm: [0008] 2b ca 03 b8 f7 95 05 1e
platform caam_sm: 192-bit clear key:
platform caam_sm: [0000] 00 01 02 03 04 0f 06 07
platform caam_sm: [0008] 08 09 0a 0b 0c 0d 0e 0f
platform caam_sm: [0016] 10 11 12 13 14 15 16 17
... and so on

If not, how can I turn out this?

Yuri · ‎02-11-2019

Hello,

the mentioned log relates to CAAM tests.

Some details may be found in the following discussion.

How to decrypt and use a black key?

Have a great day,

Yuri

------------------------------------------------------------------------------

Note: If this post answers your question, please click the Correct Answer

button. Thank you!

Is it securely to print out CAAM keys to console?

Is it securely to print out CAAM keys to console?

i.MX6UL