Ask questions and find answers on STM32 security frameworks and tools, including cryptographic libraries, TrustZone, and the Secure Manager.
Hello,I am using the X-CUBE-SBSFU package with the KMS to perform firmware update on my ST MCU.To verify the authenticity of the firmware I use ECDSA. However, I don't understand why I only need to provide a private key but not the public key. If I u...
Hi,I'm using STM32CubeExpansion_Crypto_V4.0.1 library for verifying a signed firmware file on STM32F7 controller. The key-pair has been generated using openssl command-line. The firmware has been signed using the private key (PEM). The signature has ...
I'm successfully implemented IAP for stm32h745. so I wish upgrade to sbsfu.Sbsfu has security firmware upgrade. When i implement for IAP, Firmware file was merged cm4, cm7 binary file using Srecord.If I merge files, won't the integrity of the firmwar...
Hi Team,I am working on a project involving the STM32H5 microcontroller and I am in need of information on how to manage the keys securely for encryption and decryption. I have been unable to find a document that covers this topic specifically for th...
I am trying to use TrustZone on STM32U5A9:I am setting up the following regions in SAU:0xc1fe000-0xc1fffff non-secure callable0x8200000-0x83fffff non-secure0x200c0000-0x20273fff non-secure0x60000000-0x6fffffff non-secureAs soon as I flip the enable f...
Hello,I am working on Secure Boot for one of the project having the following list of information,Board : B-U585I-IOT02ADevice name : STM32U575/STM32U585Device type : MCUDevice CPU : Cortex-M33 I am trying to boot the device using generated keys with...
I'm trying to create ECDSA keys on a STM32WL55 using the X-Cube/HAL Crypto library. I can generate NIST keys no problem, however when I try using the Brainpool curves, it mostly returns the following error: CMOX_ECC_ERR_WRONG_RANDOM ((cmox_ecc_retval...
Hello,I have created my own program using TrustZone and I want to add the SBSFU_BOOT project to it. How can I do this?
Hello, I am writing code for changing the RDP Level, but I am facing a hard fault trigger in the code:this is the line after unlocking the FLASH_CR_LOCK, and FLASH_CR_OPTLOCK. After unlocking able to change the RDP level to 1 or 2 but as soon the deb...
Hello,I am developing an application on STM32H7 MCU which uses SBSFU bootloader for secure firmware updates. I am trying to combine the SFB update package with some additional data in a single binary file that is sent for the firmware. To make this w...