manualshive.com logo in svg

NXP Semiconductors OM-A5000ARD, Начало работы, Страница: 25 / 30

Поделиться
Скачать
NXP Semiconductors OM-A5000ARD Скачать руководство пользователя страница 25

NXP Semiconductors

AN13256

Get started with EdgeLock A5000 support package

The AN12402 describes how to leverage the EdgeLock A5000 ease- of-useconfiguration

for secure cloud onboarding to the Azure IoT Hub cloud platform. It provides detailed

instructions to run the software example provided as part of the support package using

an OM-A5000ARD and an i.MX 8M board with a Linux OS.

5.2.4.4 AN12403 - EdgeLock SE05x for Secure connection to IBM Watson IoT

The EdgeLock A5000 is designed to provide a tamper-resistant platform to safely store

credentials needed for device authentication and registration to public or private clouds.

EdgeLock A5000 helps to set up a trusted TLS connection to onboard devices to the

cloud without writing security code or exposing credentials or keys
The AN12403 note describes how to leverage the EdgeLock A5000 ease- of-use

configuration for secure cloud onboarding to the Watson IoT cloud platform. It provides

detailed instructions to run the software example provided as part of the support package

using an OM-SE050ARD and an FRDM-K64F board.

5.2.5 Use case examples

App note

Title

AN12661

EdgeLock SE05x for Wi-Fi credential protection

AN12662

Binding a host device to EdgeLock SE05x

Table 9. Use case examples

5.2.5.1 AN12661 - EdgeLock SE05x for Wi-Fi credential protection

The EdgeLock A5000 allows you to authenticate devices attempting to connect to a Wi-

Fi router or wireless LAN network and, in this way, it helps secure access to restricted

networks. EdgeLock A5000 supports WPA-PSK and WPA-EAP-TLS security protocols.
In this case, the Wi-Fi module leverages EdgeLock A5000 to safely store the password

(in case of WPA-PSK protocol) or the private key and certificate (in case of WPA-EAP-

TLS authentication) that are used to establish the secure WiFi connection. During the

Wi-Fi connection setup, EdgeLock A5000 is also leveraged to derive the session keys

required for data exchange.
The AN12661 describes how to leverage EdgeLock A5000 for Wi-Fi credential

protection. It explains how to run a demo setup that showcases the use of EdgeLock

A5000 ease-of-use configuration to authenticate devices to a Wi-Fi network based on

WPA-EAP-TLS protocol.

5.2.5.2 AN12662 - Binding a host device to EdgeLock SE05x

The EdgeLock A5000 provides manufacturers the option to bind the MCU of the IoT

device to the secure element, so that security services offered by EdgeLock A5000 can

only be used by that particular MCU.
The AN12662 describes the different stages during the product manufacturing where the

binding process can be implemented, depending on the IoT device security requirements

and the available MCU

AN13256

All information provided in this document is subject to legal disclaimers.

© NXP B.V. 2022. All rights reserved.

Application note

Rev. 1.0 — 28 March 2022

25 / 30

Содержание OM-A5000ARD

Страница 1: ...2 Application note Document information Information Content Keywords EdgeLock A5000 Secure Authenticator Plug Trust Secure Authenticator Abstract This document is the entry point for getting familiar with EdgeLock A5000 support package contents and how to get started with them ...

Страница 2: ...t package Revision history Revision number Date Description 1 0 2022 03 28 Initial version Revision history AN13256 All information provided in this document is subject to legal disclaimers NXP B V 2022 All rights reserved Application note Rev 1 0 28 March 2022 2 30 ...

Страница 3: ...th the most common OSs including Linux Windows RTOS and Android Sample code for major IoT security use cases Extensive application notes The development kit is compatibile with i MX I MX RT and Kinetis MCU boards Figure 1 EdgeLock A5000 support package overview As such the EdgeLock A5000 support package supplies you with all you need to evaluate prototype and implement your next secure IoT applica...

Страница 4: ...2NC Description Picture OM A5000ARD 935424319598 Arduino compatible development kit OM SE050RPI 935379833598 Raspberry Pi to OMSE050ARD adapter board Table 1 EdgeLock A5000 development boards Note You have two options to connect the Raspberry Pi to the OM A5000ARD board 1 Using the OM SE05xRPI adapter board This board does not include any active component 2 Using the OM SE05xARD connected with wir...

Страница 5: ...CU MPU boards supported by the EdgeLock Plug Trust middleware Part number 12NC Description Picture FRDM 64F 935326293598 Freedom development platform for Kinetis K64 K63 and K24 MCUs MIMXRT1060 EVK 935368284598 MIMXRT1060 EVK low cost evaluation kit for Cortex M7 MIMXRT1170 EVK 935378982598 MIMXRT1170 EVK low cost evaluation kit for Cortex M7 MCIMX8M EVK 935378743598 Evaluation Kit for the i MX 8M...

Страница 6: ...rom the board SDK package to your MCUXpresso workspace These project examples offer a quick way to evaluate EdgeLock A5000 features and its source code can be re used for your own implementations The latest SDK packages can be found in EdgeLock A5000 product website under the Tools Software tab as shown in Figure 2 Figure 2 MCU board SDKs with EdgeLock A5000 examples Note The MCU SDKs can be downl...

Страница 7: ...EdgeLock 2GO agent se05x_vcom The vcomSE050 demo application allows the board to be used as a bridge between the PC and the secure module and enables the execution of the config tool and other utilities from the PC Table 3 EdgeLock A5000 FRDM 64F MCUXpresso SDK examples The Plug Trust Middleware uses the feature file fsl_sss_ftr h to select a dedicated EdgeLock product IC and the corresponding Aut...

Страница 8: ...0 support package Figure 3 Plug Trust middleware feature file fsl_sss_ftr h select AUTH application AN13256 All information provided in this document is subject to legal disclaimers NXP B V 2022 All rights reserved Application note Rev 1 0 28 March 2022 8 30 ...

Страница 9: ...n of EdgeLock A5000 features Note To take advantage of EdgeLock A5000 features please select the corresponding CMake options as described in Section 4 2 and rebuild the middleware The AN13027 explains How to get started with the OM A5000ARD board and i MX 8M board The latest EdgeLock Plug Trust middleware software package pre installed on a bootable SD Card image version can be found in product we...

Страница 10: ...VK The AN12570 explains how to get started with the OM A5000ARD board and the Raspberry Pi board as a reference for any other device running a Linux distribution AN13256 All information provided in this document is subject to legal disclaimers NXP B V 2022 All rights reserved Application note Rev 1 0 28 March 2022 10 30 ...

Страница 11: ...can be ported to multiple host platforms and host operating systems Section 3 1 describes how to use the MCUExpresso EdgeLock A5000 examples Section 3 2 explain how use pre compiled Linux image for the MCIMX8M EVK The EdgeLock Plug Trust middleware exposes an API called Secure Sub System SSS which supports the access to the cryptography and identity features of A71CH EdgeLock SE050 EdgeLock SE051 ...

Страница 12: ...rent target platforms e g Windows and Linux PCs and embedded platforms The project settings can be specified dynamically using the CMake GUI Figure 8 shows a CMake GUI screenshot with EdgeLock A5000 project settings To build the middleware to support the A5000 Secure Authenticator application the following CMake setting needs to be modified before building the middlware Select AUTH for the CMake o...

Страница 13: ...signers It includes Technical API reference guide Instructions to compile and build EdgeLock Plug Trust middleware Instructions to run the ssscli tool See Section 4 4 for more details Developer guides to execute the demo and examples To open the HTML documentation 1 Download EdgeLock Plug Trust middleware as explained in Section 4 2 Unzip the EdgeLock Plug Trust middleware package AN13256 All info...

Страница 14: ...n navigate through the different document sections using the left hand side menu or the hyper linked table of contents shown in the center For instance to check the EdgeLock Plug Trust middleware description click on Section 3 Plug Trust MW Stack on the left hand side menu as shown in Figure 10 Figure 10 EdgeLock Plug Trust middleware description AN13256 All information provided in this document i...

Страница 15: ...tificates Read reference keys and certificates Delete erase keys and certificates Generate keys inside the EdgeLock A5000 Attach policies to objects List all secure objects Retrieve the A5000 device unique ID Run some basic operations like sign verify and encrypt decrypt operations The EdgeLock Plug Trust middleware code documentation provides detailed usage examples of the ssscli tool To find the...

Страница 16: ... on Section 9 CLI tool and then click on the Section 9 6 Usage examples as shown in Figure 11 Figure 11 ssscli documentation AN13256 All information provided in this document is subject to legal disclaimers NXP B V 2022 All rights reserved Application note Rev 1 0 28 March 2022 16 30 ...

Страница 17: ...a VCOM to T1 Over I2C firmware is required MIMXRT1170 EVK MIMXRT1060 EVK FRDM 64F LPC55S69 EVK The MCU boards are connected via USB to the Windows PC and the MCU board VCOM to T1 Over I2C firmware is acting as a bridge between the PC VCOM interface and the A5000 Secure Authenticator This setup also allows to run the A5000 middleware Visual Studio project examples on a Windows platform Further deta...

Страница 18: ...se05x_vcom T1oI2C evkmimxrt1060 bin se05x_vcom T1oI2C frdmk64f bin se05x_vcom T1oI2C lpcxpresso55s69 bin The pre compiled Windows ssscli tool is located in simw top binaries PCWindows ssscli 4 4 1 1 List all A5000 secure objects To list all secure objects from EdgeLock A5000 dynamic file system follow these steps 1 First open a command prompt and navigate to simw top binaries PCWindows ssscli 2 Yo...

Страница 19: ... the EdgeLock SE05x product variants ssscli se05x help Figure 15 ssscli se05x help 4 Connect to the EdgeLock SE05x using the executable ssscli exe You need to indicate the VCOM port number corresponding to your MCU VCOM port The subsystem option auth shall be to open a session with the A5000 AN13256 All information provided in this document is subject to legal disclaimers NXP B V 2022 All rights r...

Страница 20: ... Secure Authenticator list all A5000 secure objects and close the connection ssscli connect auth vcom COMxx ssscli se05x readidlist ssscli disconnect Figure 16 ssscli readidlist example AN13256 All information provided in this document is subject to legal disclaimers NXP B V 2022 All rights reserved Application note Rev 1 0 28 March 2022 20 30 ...

Страница 21: ...cumentation 5 1 1 DS667610 Product data sheet The product data sheet describes the features pre provisioned ease of use configuration commercial offering and electrical and pyhisical characteristics 5 1 2 AN13187 EdgeLock A5000 Authentication Application APDU Specification The AN12413 provides the EdgeLock A5000 authenticator application APDU interface for customer not using the NXP Plug Trust mid...

Страница 22: ...o configure the different communication options with the EdgeLock A5000 security IC 5 2 Applicable documentation from SE05x Family The NXP Plug Trust middleware supports the EdgeLock A5000 Secure Authenticator and the SE05x Secure Element product family For many use cases the Plug Trust middleware abstracts the hardware as well application API and allows to use existing SE05x examples and document...

Страница 23: ...ts that must be adapted to use the EdgeLock SE050 Plug Trust middleware in your host platform and host operating system 5 2 2 Quick start guides for Linux platforms App note Title AN13027 EdgeLock SE05x Quick start guide with i MX 8M AN12570 EdgeLock SE05x Quick start guide with Raspberry Pi Table 6 Quick start guides for Linux platforms Note Section 4 2 describes the CMake options for the EdgeLoc...

Страница 24: ...devices to the cloud without writing security code or exposing credentials or keys The AN12404 describes how to leverage the EdgeLock A5000 for secure cloud onboarding to the AWS IoT Core IoT Hub cloud platform It provides detailed instructions to run the software example provided as part of the support package using an OM A5000ARD and an FRDM K64F board 5 2 4 2 AN12401 EdgeLock SE05x for Secure c...

Страница 25: ...al protection The EdgeLock A5000 allows you to authenticate devices attempting to connect to a Wi Fi router or wireless LAN network and in this way it helps secure access to restricted networks EdgeLock A5000 supports WPA PSK and WPA EAP TLS security protocols In this case the Wi Fi module leverages EdgeLock A5000 to safely store the password in case of WPA PSK protocol or the private key and cert...

Страница 26: ...05x Table 10 EdgeLock A5000 support documentation 5 2 6 1 UM11225 NXP NXP EdgeLock SE05x T 1 Over I2C specification The UM11225 is the specification for the data link layer protocol T 1 over I2C on the EdgeLock A5000 product family AN13256 All information provided in this document is subject to legal disclaimers NXP B V 2022 All rights reserved Application note Rev 1 0 28 March 2022 26 30 ...

Страница 27: ...arty customer s Customer is responsible for doing all necessary testing for the customer s applications and products using NXP Semiconductors products in order to avoid a default of the applications and the products or of the application or use by customer s third party customer s NXP does not accept any liability in this respect Export control This document as well as the item s described herein ...

Страница 28: ...Lock A5000 documentation 21 Tab 5 Quick start guides for MCU boards 22 Tab 6 Quick start guides for Linux platforms 23 Tab 7 Quick start for Windows platform 23 Tab 8 Quick start guides for cloud connections 24 Tab 9 Use case examples 25 Tab 10 EdgeLock A5000 support documentation 26 AN13256 All information provided in this document is subject to legal disclaimers NXP B V 2022 All rights reserved ...

Страница 29: ...ard image for MCIMX8M EVK 10 Fig 6 NXP Plug Trust middleware block diagram 11 Fig 7 Download EdgeLock Plug Trust middleware 12 Fig 8 CMake options 13 Fig 9 HTML code documentation 14 Fig 10 EdgeLock Plug Trust middleware description 14 Fig 11 ssscli documentation 16 Fig 12 ssscli usage examples 17 Fig 13 ssscli help 18 Fig 14 ssscli connect help 19 Fig 15 ssscli se05x help 19 Fig 16 ssscli readidl...

Страница 30: ...5x Quick start guide with i MX RT1060 and i MX RT1170 23 5 2 1 3 AN12452 EdgeLock SE05x Quick start guide with LPC55S69 23 5 2 1 4 AN12448 EdgeLock SE05x Plug Trust Middleware porting guidelines 23 5 2 2 Quick start guides for Linux platforms 23 5 2 2 1 AN13027 EdgeLock SE05x Quick start guide with i MX 8M 23 5 2 2 2 AN12570 EdgeLock SE05x Quick start guide with Raspberry Pi 23 5 2 3 Quick start f...

Отзывы:

Нет отзывов