FAQ: What Secure Boot Modes are supported in ADSP-BF707?

Document created by Harshit.Gaharwar Employee on Jul 21, 2014Last modified by ColinJ on Aug 1, 2014
Version 4Show Document
  • View in full screen mode

Q:

What Secure Boot Modes are supported in ADSP-BF707

 

--------------

 

A:

Three formats of Secure Booting are supported:


Formats:

  1. BLp – This is when the boot stream is not encrypted but is digitally signed.
  2. BLw – This is when the boot stream is encrypted and digitally signed. The key to decrypt the stream is “wrapped” and provided in the Security header.
  3. BLx – This is also when the boot stream is encrypted and digitally signed. The key to decrypt the stream is stored in OTP memory a priori by the customer.

 

Public/Private key

  1. The PRIVATE key is used to generate the signature and is held secret on the host computer.
  2. The PUBLIC key is pre-programmed into the OTP by the customer and is used by the boot kernel to verify the signature thereby authenticating the boot stream

Attachments

    Outcomes