• State Not Answered
  • Replies 5 replies
  • Subscribers 63 subscribers
  • Views 1175 views
  • Users 0 members are here
Attachments (0)
Nordic Case Info
  • Case ID: 241184
Options
This post is older than 2 years and might not be relevant anymore
More Info: Consider searching for newer posts

Using the cryptocell device root key on NRF5240 with Zephyr

Barry

How do I use the device root key to encrypt and decrypt?

I can set the device root key in the cryptocell register, but not sure how to use it. I am using Zephyr by the way.

I saw a function mbedtls_internal_aes_decrypt, that I was hoping used the device root key because it doesn't seem to take a key as an argument, and the documentation doesn't say you need to set a key before calling it. But I tried it and and it fails to start. Stepping though the assembly, I see that a check of the value at offset 0x38 from the start of the aes context is failing. not sure what the value is, but it is not being set by the context init, so I must have to use another function before I call the crypt fxn after I call the init fxn.

Parents Reply
  • 0 in reply to Einar Thorsrud

    Ok. This is disappointing. We would like to use the Device Root Key. But if there is no way to now, then I guess that's the way it is. It seems odd to me that you would mention the device root key at all, and how to set it when there is no way to use it. It seems a little misleading. If it were me I would have at least put a statement saying that "While the Device root key can be set, use of the key is not yet implemented and is a future capability that Nordic hopes to implement at some point."

Children
Related

core_v2_widget.Hide()