i.MX93: Encrypted Data Storage API Test Error

petertseng · ‎02-23-2026

Hi Team,

I performed ELE-HSM Tests according to the method provided in the README file at https://github.com/nxp-imx/imx-secure-enclave/blob/lf-6.12.49_2.2.0/

The following error was encountered.

---------------------------------------------------
Encrypted Data Storage API Test
---------------------------------------------------
Data [Encrypted + Signed] stored. SUCCESS

Data [Encrypted + Signed] retrieved. SUCCESS

Signature Verified. SUCCESS.

Decrypted data matches stored Plain data. SUCCESS


SAB Error: SAB CMD [0xa2] Resp [0x329] - Provided key-id, Unknown to key store..

hsm_data_ops [RETRIEVE Again] err: 0x3. SUCCESS
Retrieved Again: Data Empty. SUCCESS
---------------------------------------------------

Why is the ELE-HSM test reporting an error?

Do I need to store the key in OTP first?

Attach the logfile

Thanks,

Peter

Zhiming_Liu · ‎03-01-2026

Hi @petertseng

This is a phenomenon consistent with the test expectations; there is no need to store the key in the OTP.

Best Regards,
Zhiming

petertseng · ‎03-02-2026

Hi Zhiming,

Can an IMX93 ELE-HSM be used to replace the Crypto Authentication IC (e.g., ATECC608A)?

If possible, how should I achieve this?

I would be extremely grateful if you could provide any relevant information or documents.

Thanks,

Peter

Zhiming_Liu · ‎03-03-2026

Hi @petertseng

In certain scenarios, their functionalities overlap, but ELE-HSM cannot fully replace ATECC608A. If you require a completely independent/offiline secure element, then ATECC608A should be used. If your needs are limited to key storage + AES encryption/decryption + RNG + SHA + secure boot, then using ELE is an option.

Best Regards,
Zhiming

petertseng · ‎03-09-2026

Hi Zhiming,

How can I store the public key on the IMX93 ?

Where is the public key physically stored ? (e.g., in OTP/eFUSE or root filesystem)?

Thanks,

Peter