Secure boot with HSM

ChrisAlfred
Posts: 19
Joined: Tue Mar 23, 2021 6:22 am

Secure boot with HSM

Postby ChrisAlfred » Mon Apr 15, 2024 2:31 am

The documentation regarding Secure Boot using espsecure.py to generate the digest for burning the eFuse signature block assumes that the private key is available.

We are using an external HSM (Digicert, via PKS11) and we're wondering how we can do this from a pre-signed binary (or what other method should we use) as we don't have access to the private key in this context.

Who is online

Users browsing this forum: Bing [Bot] and 211 guests