is the Master Key secure in the hex generated with nrfutil pkg generate

Hi

We have a Bootloader with NRF_CRYPTO_BACKEND_CC310_BL_HASH_SHA256_ENABLED function.

The private key is generated with "nrfutil.exe keys generate private.key" and is needed for the public key we use in the application.

At the end, we build the bootloader, the application and generate the package with "nrfutil settings generate" with the option "VALIDATE_ECDSA_P256_SHA256" and get the hex file which we program into the nrf52840 with the command line "nrfjprog".

Now when we assemble our PCBs externally and need to program the chips, we have to share the generated hex file, which includes bootloader, application and of course the keys.

Is the key readable or in a defined range which is on all generated hex files from Nordic at the same position? The question is how saef is to share the hex file regarding the keys.

Thanks for an information

Parents Reply Children
No Data
Related