About workhero

workhero · 2022-11-18

Hi All.Our target, using the STM32MP153c, shall boot secure. The signing private keys should not be accessible via the filesystem. The secure boot signing is implemented with development keys within yocto at moment. Moving to productive environment w...

workhero · 2022-11-25

Hi OliverK,this is fine for signing the TF-A binary, but how to sign the FIP image? Currently we use create_cert/fiptool to sign the image. As far as I understood those tools, they work with certs and private key in file system.Do we need to initiali...

workhero · 2022-11-24

Hi OliverK.Unfortuantely, this does not help. Because this is already running in Target with development keys.My question concerns more about the image signing process and the used private key on the signing-machine.How to use a private key in pksc11...

User statistics

User Activity

How to use a smartcard (pkcs11) with create_cert/fiptool

Re: How to use a smartcard (pkcs11) with create_cert/fiptool

Re: How to use a smartcard (pkcs11) with create_cert/fiptool