Hello, I'm curious to know how to add a secure boot feature on the STM32429I-EVAL1. I would like to allow the boot on a bootloader located in the flash memory, only if this one is known by the internal bootloader.

Jmail.1 · ‎2021-10-26

I'm trying to add a authentication mechanism with a symmetric key stored in the system memory but I'm not sure if it's the right way and i also don't know how to store this key in the system memory.

I read about SBSFU but not sure about it.

Kindly advise me on how could i do it please.

Thanks in advance.

TDK · ‎2021-10-26

It sounds like X-CUBE-SBSFU was built for something like this. Spend some time reading about it and getting the examples up and running on your board.

https://www.st.com/en/embedded-software/x-cube-sbsfu.html

If you feel a post has answered your question, please click "Accept as Solution".

View solution in original post

TDK · ‎2021-10-26

It sounds like X-CUBE-SBSFU was built for something like this. Spend some time reading about it and getting the examples up and running on your board.

https://www.st.com/en/embedded-software/x-cube-sbsfu.html

If you feel a post has answered your question, please click "Accept as Solution".

Tesla DeLorean · ‎2021-11-04

Why wouldn't you use an asymmetric method where the validation/verification only needs the Public Key?

Tips, Buy me a coffee, or three.. PayPal Venmo
Up vote any posts that you find helpful, it shows what's working..

Jmail.1 · ‎2021-11-04

asymmetric, why not but my main issue is here that i want to not allow the user to reset the flash memory to deploy whatever he wants...