My customer wishes to use the secure boot features of the T10xx series MPU's. I have past experience and am familiar with the iMX family and it's Trustzone secure boot methodology and also the Code Signing Tool. It looks like the T10xx security capabilities are very close if not identical to that family, with a few small exceptions (Secure clock and some of the tamper detect functions).
In several of the QoriQ security documents, app notes, and FTF technical presentations I've read, it mentions the Code Signing Tool for the T10xx series, but I wanted to clarify if this tool is the same exact one that is used for iMX code signing, as I haven't been able to find it anywhere to download on NXP.com product pages. I would guess that generating the hash code,keys, the CSF, and signature for any boot image would be pretty much the same.
Or is there a unique Code Signing Tool for the T Series that is embedded in the SDK?, or even better....a standalone CST that doesn't require downloading the very large (several GB) SDK file?
Avnet FAE - Upstate NY