帮助
英语(美国) | English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

Non Volatile Memory in CAAM (iMX6)

取消
开启建议
自动建议可通过在您键入时建议可能的匹配,而快速缩小您的搜索结果范围。
显示结果 
显示  仅  | 搜索替代 
您的意思是: 
已解决
跳至解决方案

Non Volatile Memory in CAAM (iMX6)

跳至解决方案
‎02-23-2017 12:18 AM
3,734 次查看
satyadamarla
Contributor III

Hello Everyone,

I would like to know if there is any non volatile memory in CAAM for storing keys.

My application is as follows:

I would like to save the key for my encrypted rootfs in the processor and access it at boot time and use it to decrypt it through initramfs. I know the keys can be placed in the kernel, initramfs or sdcard (also usb) but I want to know if its possible to save it somewhere in the processor or any hardware modules. I have researched the CAAM Secure Memory but I understood it is used to save stuff on a running system and when the system is restarted then it is lost as it is a volatile memory like RAM. I researched SNVS (Secure Non Volatile Storage) but there is no mention of it being used to save keys from userspace. 

  1. Can anyone tell me if there is a possibility in iMX6 to save a key permanently and use it at boot time?
  2. If not, where do you save your encryption keys for your rootfs?

Greets,

Satya

标签 (3)
标签
0 项奖励
回复
1 解答

跳至解决方案
‎02-23-2017 02:01 AM
1,879 次查看
igorpadykov
NXP Employee
NXP Employee

Hi Satya

fuses are non-volatile memory, one can check Table 5-10. Fusemap Descriptions

http://cache.freescale.com/files/32bit/doc/ref_manual/IMX6DQRM.pdf 

and SRK fuses described in AN4581 Secure Boot

http://www.nxp.com/assets/documents/data/en/application-notes/AN4581.pdf 

Best regards
igor
-----------------------------------------------------------------------------------------------------------------------
Note: If this post answers your question, please click the Correct Answer button. Thank you!
-----------------------------------------------------------------------------------------------------------------------

在原帖中查看解决方案

回复
2 回复数

跳至解决方案
‎02-23-2017 02:01 AM
1,880 次查看
igorpadykov
NXP Employee
NXP Employee

Hi Satya

fuses are non-volatile memory, one can check Table 5-10. Fusemap Descriptions

http://cache.freescale.com/files/32bit/doc/ref_manual/IMX6DQRM.pdf 

and SRK fuses described in AN4581 Secure Boot

http://www.nxp.com/assets/documents/data/en/application-notes/AN4581.pdf 

Best regards
igor
-----------------------------------------------------------------------------------------------------------------------
Note: If this post answers your question, please click the Correct Answer button. Thank you!
-----------------------------------------------------------------------------------------------------------------------

回复

跳至解决方案
‎02-23-2017 08:16 AM
1,879 次查看
satyadamarla
Contributor III

Hello Igor,

Thank you.

I think it's not possible as the key is 256bit but there are only two General Purpose Words (GP1 and GP2) which make 64bit. I am not sure what will happen if I write the key into other registers. I can't take that risk.

Greets,

Satya

0 项奖励
回复