ESP32 Forum

ESP32 Official Forum
http://esp32.io/

ESP32 Security - PKI Support

http://esp32.io/viewtopic.php?f=12&t=16840

Page 1 of 1

ESP32 Security - PKI Support

Posted: Fri Aug 07, 2020 6:58 pm
by askpatrickw
I see the ESP32 supports secure boot and flash encryption:
https://docs.espressif.com/projects/esp ... ot-v2.html
https://docs.espressif.com/projects/esp ... ption.html

I also see there is an AES based approach and in the ESP32V3 a PKI based approach:
https://medium.com/the-esp-journal/unde ... 483e465724 (search for ESP32V3)

Is the PKI support in the ESP32V3 limited to only these features or can we use this for other features, such as IoT Device Identity with Azure IoT Device Provisioning?

Thanks for the help!

Re: ESP32 Security - PKI Support

Posted: Sun Aug 09, 2020 1:52 am
by WiFive
There is no separate secure element hardware with private key storage. If you need that maybe you want wroom32-se? Otherwise just rely on secure boot and flash encryption to protect your keys. You could sign and verify your key partitions with the same PKI.

Re: ESP32 Security - PKI Support

Posted: Fri Aug 14, 2020 1:05 pm
by Franco
Sorry just saw your post. If you can use the ESP32-S2 in your application, the Digital Signature Peripheral may be helpful. It is explained here:
https://medium.com/the-esp-journal/esp3 ... 5453f98590

Re: ESP32 Security - PKI Support

Posted: Thu Sep 10, 2020 5:05 am
by askpatrickw
Thanks, I was checking if the ESP32 had similar security features as the S2. It does not, as you point out, the S2 is way to go for these needs.

Thank you !
-p
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/