Hi,
I am using yocto daisy project (linux kernel 3.10.17) on wandboard-quad.
I followed all the steps mentioned in required for setting secure boot mentioned in following documents. including burning SRK keys and secure_enable (HW_OCOTP_CFG5) register from Linux.
With setup I confirmed that uboot with valid signing information can boot. and the status of hab_status command shows success. with hab_config as 0xcc.
But in Linux the default sm_test driver is still using public key for encryption and decryption.
Is there any way I can verify that I am having secure boot system and the key used for encryption is now hardware key and not public key??
Thanks
Swapnil
Hi Swapnil
secure boot is defined by fuses, if blown, boot process is secure
Best regards
igor
-----------------------------------------------------------------------------------------------------------------------
Note: If this post answers your question, please click the Correct Answer button. Thank you!
-----------------------------------------------------------------------------------------------------------------------