FAQs
English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

CA to sign SRK public key HABv4

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED
Jump to solution

CA to sign SRK public key HABv4

Jump to solution
‎06-03-2021 04:27 AM
649 Views
antonio_santagi
Contributor IV

Hello, 

we are using iMx8MMini and we noticed there is the option of signing the SRK public keys certificates with a CA .

I read on other posts about this , like this one : 

https://community.nxp.com/t5/i-MX-Processors/Confused-about-SRK/m-p/1184334

But do you have an use case example on how this CA signing of the SRK certificates could be used ?

My guess is that it can be used for example to verify at production time that the hash being written to the fuses is authentic and can be trusted as it corresponds to signed SRK public keys that can verified against a CA certificate installed on the PC, is this correct ?

Or does it have other use cases ?

thank you

 

Labels (1)
0 Kudos
Reply
1 Solution

Jump to solution
‎06-03-2021 10:46 PM
645 Views
Yuri
NXP Employee
NXP Employee

@antonio_santagi 
Hello,

  we do not have solutions / examples regarding CA signing of the SRK
certificates; how such approach could be used.

Regards,
Yuri.

View solution in original post

0 Kudos
Reply
1 Reply

Jump to solution
‎06-03-2021 10:46 PM
646 Views
Yuri
NXP Employee
NXP Employee

@antonio_santagi 
Hello,

  we do not have solutions / examples regarding CA signing of the SRK
certificates; how such approach could be used.

Regards,
Yuri.

0 Kudos
Reply