Dear All,
We use HAB.
And OCOTP_LOCK[SRK_LOCK] was set.
However, the keys can be seen via the shadow registers.
Is this the correct behavior?
Writen Lock Register :
Read Shadow Registers :
Is there something where you noticed ?
Best Regards,
George
Solved! Go to Solution.
From the RM :
SRK_LOCK :
0 - Unlock
1 - Write Protect + Override Protect
No read protection.
Have a great day,
Yuri
-----------------------------------------------------------------------------------------------------------------------
Note: If this post answers your question, please click the Correct Answer button. Thank you!
-----------------------------------------------------------------------------------------------------------------------
From the RM :
SRK_LOCK :
0 - Unlock
1 - Write Protect + Override Protect
No read protection.
Have a great day,
Yuri
-----------------------------------------------------------------------------------------------------------------------
Note: If this post answers your question, please click the Correct Answer button. Thank you!
-----------------------------------------------------------------------------------------------------------------------
Dear Yuri,
Thank you for telling carefully.
I understand very well.
Thnaks,
George
Dear All,
Is the above my misapprehension?
Can't it prevent looking into SRK?
Best Regards,
George
George, hello
OCOTP_SRKx registers contain hash of the SRK - just for checking of public keys,
assuming private key pairs are not accessible and are located on safe servers.
"The SRK table allows installation of one of four (maximum) public keys. This key is used as
the root of the HAB public key infrastructure. The SRK table is constructed from up to four public
SRKs. A cryptographic hash of this table is generated by the CST; the generated cryptographic
hash is then provisioned to the SRK_HASH field in OTP fuses during manufacturing."
Regards,
Yuri.