Hello,
Is there any way to encrypt flash to prevent image file is read?
How to encrypt flash to prevent image file is readed?
Hello, there are various solutions for flash encryption available in the market. A common approach is to use Secure Boot with the main control chip to boot the encrypted image. However, RV1103/RV1106 uses OP-TEE V2 for related encryption, which seems to differ from traditional encryption schemes. We have not conducted related testing. If needed, please refer to the relevant documentation.
- Attachments
-
-
Rockchip_Developer_Guide_OTP_EN.pdf (156.49 KiB)Downloaded 351 times
-
Rockchip_Developer_Guide_Crypto_HWRNG_EN.pdf (479.72 KiB)Downloaded 185 times
-
Rockchip_Developer_Guide_TEE_SDK_EN.pdf (743.03 KiB)Downloaded 389 times
-
Hello:
This is very important. It is a dealbreaker to switch development from pi pico 2 to luckfox boards. For pico 2 it is clearly documented on how to write to OTP and they provide scripts to sign and encrypt firmware. The chips used in luckfox certainly do have OTP and even crypto hardware but without a proper documentation/software it is useless. We are talking about many commercial developers that would be eager to switch if security is provided. We developers could take our chances to change some sources but is quite risky to play with OTP fuses considering there is no emulator.
This is very important. It is a dealbreaker to switch development from pi pico 2 to luckfox boards. For pico 2 it is clearly documented on how to write to OTP and they provide scripts to sign and encrypt firmware. The chips used in luckfox certainly do have OTP and even crypto hardware but without a proper documentation/software it is useless. We are talking about many commercial developers that would be eager to switch if security is provided. We developers could take our chances to change some sources but is quite risky to play with OTP fuses considering there is no emulator.
hi tradingfuturo:
We have released the RK Provision OTP guidance document in our wikihttps://files.luckfox.com/wiki/Luckfox-Pico/PDF/doc.7z, if commercial developers need more technical support, they can contact our commercial staff
We have released the RK Provision OTP guidance document in our wikihttps://files.luckfox.com/wiki/Luckfox-Pico/PDF/doc.7z, if commercial developers need more technical support, they can contact our commercial staff
Thanks for the document, however seems to be for other chips different to the ones in the boards Pico and Lyra. I purchased both for evaluations pico max and lyra B but still unable to secure boot them and encrypt flash content. I am going to investigate how to contact your team. If possible please forward the contact. I have around 700 clients I could potentially sell them boards loaded with firmware.
Contact Information Click on the following link: https://www.luckfox.com/index.php?route ... on/contact
Hello!tradingfuturo wrote: ↑2025-01-18 20:31 Thanks for the document, however seems to be for other chips different to the ones in the boards Pico and Lyra. I purchased both for evaluations pico max and lyra B but still unable to secure boot them and encrypt flash content. I am going to investigate how to contact your team. If possible please forward the contact. I have around 700 clients I could potentially sell them boards loaded with firmware.
Were you able to enable OPTEE and run rk_test?