i.MX8M Nano Secure Boot (HABv4) Compliance

キャンセル
次の結果を表示 
表示  限定  | 次の代わりに検索 
もしかして: 

i.MX8M Nano Secure Boot (HABv4) Compliance

ソリューションへジャンプ
168件の閲覧回数
Nethaji1510
Contributor II

Hello Team,

            We have an IMX8MNano board. We have successfully enabled the HABv4 feature on this board and also signed the bootloader kernel and DTB file using the NXP code signing tool.


Our queries,
           Our understanding is that NXP supplied the "hab4_pki_tree.sh" script and the code signing tool for HABv4. The PKI keys were created using this "hab4_pki_tree.sh" script, and the image signatures were done using CST. But as per our cyber team compliance, we can't access the private key (it will reside in a secure server) in this case we cant use CST which require the private key. Can you provide us a solution for this?

0 件の賞賛
返信
1 解決策
101件の閲覧回数
Nethaji1510
Contributor II

Ok. Thanks for your quick support @Harvey021

Hi @Harvey021,

Kindly share the NXP CST tool 3.3.1 source code package.

元の投稿で解決策を見る

タグ(1)
0 件の賞賛
返信
2 返答(返信)
133件の閲覧回数
Harvey021
NXP TechSupport
NXP TechSupport

Hi,

You can refer to the section <Using Code-Signing Tool with Hardware Security Module> CST User guide 

IMX_CST_TOOL_NEW 

 

Regards

Harvey

0 件の賞賛
返信
102件の閲覧回数
Nethaji1510
Contributor II

Ok. Thanks for your quick support @Harvey021

Hi @Harvey021,

Kindly share the NXP CST tool 3.3.1 source code package.

タグ(1)
0 件の賞賛
返信