andrius
/
arm-trusted-firmware
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
603 Commits 2 Branches 52 Tags 32 MiB
Commit Graph

2 Commits

Author SHA1 Message Date
Juan Castillo ea4ec3aad5 TBB: use SHA256 to generate the certificate signatures 
This patch replaces SHA1 by SHA256 in the 'cert_create' tool, so
certificate signatures are generated according to the NSA Suite B
cryptographic algorithm requirements.

Documentation updated accordingly.

Change-Id: I7be79e6b2b62dac8dc78a4f4f5006e37686bccf6
 2015-03-05 16:40:07 +00:00
Juan Castillo 6f97162237 TBB: add tool to generate certificates 
This patch adds a tool that generates all the necessary elements
to establish the chain of trust (CoT) between the images.

The tool reads the binary images and signing keys and outputs the
corresponding certificates that will be used by the target at run
time to verify the authenticity of the images.

Note: the platform port must provide the file platform_oid.h. This
file will define the OIDs of the x509 extensions that will be added
to the certificates in order to establish the CoT.

Change-Id: I2734d6808b964a2107ab3a4805110698066a04be
 2015-01-28 18:26:59 +00:00