FAQs
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

[Secure boot] Is it possible to add kernel authentication?

Go to solution
AVazquez
Associate III

‎2020-09-21 04:04 AM

Hi,all!

In the wiki about secure boot, only FSBL and SSBL files are signed and authenticated.

It would be very interesting and useful if you could also sign and authenticate the kernel and increase security.

Is this possible?

Labels:
0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions
Go to solution
Olivier GALLIEN
ST Employee

‎2020-09-25 07:44 AM

Hi @AVazquez​ ,

It's possible to authenticate any level of application code but ST only provide complete support/guideline for Secure Boot part.

Authentication of kernel and upper layer can be done using standard community methodology.

2 Kbytes in the OTP register are available to store extra keys.

Olivier

Olivier GALLIEN
In order to give better visibility on the answered topics, please click on 'Accept as Solution' on the reply which solved your issue or answered your question.

View solution in original post

0 Kudos
2 REPLIES 2
Go to solution
Olivier GALLIEN
ST Employee

‎2020-09-25 07:44 AM

Hi @AVazquez​ ,

It's possible to authenticate any level of application code but ST only provide complete support/guideline for Secure Boot part.

Authentication of kernel and upper layer can be done using standard community methodology.

2 Kbytes in the OTP register are available to store extra keys.

Olivier

Olivier GALLIEN
In order to give better visibility on the answered topics, please click on 'Accept as Solution' on the reply which solved your issue or answered your question.
0 Kudos
Go to solution
AVazquez
Associate III

‎2020-09-26 05:41 AM

Perfect!

Thanks!

0 Kudos
Top