How to execute OP-TEE cryptographic algorithms directly from ARM Trusted Firmware

Jump to: navigation, search
Revision as of 8 December 2017 at 01:29.
The highlighted comment was edited in this revision. [diff]

I want to evaluate cryptographic algorithms on the boot loader before Linux starts up.

We plan to include evaluation software in ARM Trusted Firmware (bl31-h3ulcb).

ARM Trusted Firmware has no encryption algorithm, so we are considering using a library in OP-TEE (tee-h3ulcb).

For example, in evaluating signature verification using RSA, the following processing is considered necessary.

・ Register the public key and secret key.

・ And generates a hash value of the evaluation target data. (For example SHA 256)

・ Generate a signature by encrypting the hash value with the secret key.

・ Generate a hash value by decrypting the signature with the public key.

Among these processes, I do not know how to register the public key and secret key to OP-TEE.

Please tell me what kind of processing can be realized from ARM Trusted Firmware.

    TNoda (talk)

    17:23, 7 December 2017
    Retrieved from "https://elinux.org/Thread:Talk:R-Car/Boards/Yocto-Gen3/How_to_execute_OP-TEE_cryptographic_algorithms_directly_from_ARM_Trusted_Firmware"