I was successfully able to use the HAB and the Code Signing Tool to sign and to validate the signature of U-Boot on i.MX51.
The application note AN4547 indicates that "extending the secure boot chain past the initial stage is also possible with HAB", using the HAB API. The i.MX51 Security Reference Manual describes three HAB functions.
I am interested in extending the secure boot to the OS Kernel and the Firmware.
Are there any additional documentation from Freescale on the details of the HAB API and on how to extend the secure boot chain?
Thanks for your time and assistance.