• State Verified Answer
  • Replies 5 replies
  • Subscribers 62 subscribers
  • Views 5234 views
  • Users 0 members are here
Attachments (0)
Nordic Case Info
  • Case ID: 125620
Options
This post is older than 2 years and might not be relevant anymore
More Info: Consider searching for newer posts

nRF52840 and the Root of Trust

Gregor Bader

Several answers from Nordic employees state the possibility of Secure Boot and a "Root of Trust" feature:

use of ARM TrustZone on nrf52840 for secure storage/trusted region

Cybersecurity features for NRF52 chips

What is the current progress for this feature and what to expect from it? Will there be a real TrustZone implemented or do we get only HW accelerated cryptography functions?

best regards, Gregor

  • 0

    Got this answer from an expert here at Nordic: "Answer to your question is “something in between”, at least in the timeframe of the next few months for when we are releasing nRF52840. We will have some example code showing how to do Root of Trust, but I will not guarantee that we will have a full RoT solution integrated with the rest of our infrastructure in this timeframe. Whether this solution will be Secure Boot as described by ARM, or something else has not been concluded. The design goal for this implementation would be to give a solution that shows the potential of what is available with the HW available on nRF52840.

    There will as well be documentation describing how to implement a Root of Trust solution using the features available on the nRF52840 chip."

  • 0 in reply to Bjørn Kvaale

    Hi Bjørn,

    Thank you for this information. For "... what is available with the HW available on nRF52840", is this already fixed or still under discussion or not yet ready to be published?

  • 0 in reply to Bjørn Kvaale

    Update from the expert: "A correction to what I wrote earlier (my mistake mixing some terms). nRF52840 will not have the TrustZone as described in the ARM documentation. That requires Armv8 (M23 or M33) while nRF52840 will have a Cortex M4F. I should have written: “Whether this solution will be Secure Boot as described by ARM, or something ...” instead of referring to Trust Zone. This mix-up has been updated in the answer above.

    Regarding your question: “…what is available with the HW available on nRF52840”. For this the answer is: This is fixed but not yet ready to be published."

  • 0 in reply to Bjørn Kvaale

    Dear Bjørn

    Can you give us an update on the nRF52840 and the Root of Trust?

    We are also working on a project that requires maximum security and trust. Is it possible to securely handle private keys with the nRF52840 and its CryptoCell 310?

    If yes, where and how is the private key held (how is the Root of Trust implemented)?

    Also if yes, is example code available?

    Thank you and best regards

    Thomas

  • 0 in reply to Thomas Peter

    Hi Thomas,

    The CC310 core in the nRF52840 does not have any secure flash (only secure RAM), so it cannot hold a private key during power cycles. Therefore, your only option is to store the private key in normal flash and provision CC310 on every boot. The key can still be protected so that it cannot be read by a debugger nor accessed by the application as I have described in this post, but it does not offer any protection against decapping. This may or may not be secure enough, depending on the use case.

    Einar

Related