Any detailed tutorial/docs on encrypting the rootfs with root-of-trust / TPM / master key provided by the fuses?

JerryChang · January 15, 2021, 2:22am

hello julien.moinard,

had you refer to Security chapter, which describes the details of security features?

SecureBoot establishes the root of trust and maintains the chain of trust by authenticating each stage, boot component is signed using private key.
you may also check Jetson Xavier NX and Jetson AGX Xavier Series Boot Flow for reference,

BTW,
here’re also some similar forum discussion threads you should also check about Jetson security, thanks

Topic		Replies	Views
Booting in SecureBoot environement Jetson Xavier NX boot , security	4	1255	October 18, 2021
Multi a/b root file system with secure boot Jetson AGX Xavier security , ota	14	1330	October 18, 2021
Disk encryption key in EKS partition Jetson Orin NX security	13	154	December 27, 2024
Secure OS / Rootfs Encryption Jetson TX2	5	2465	December 11, 2018
Verify encrypted boot/root Jetson AGX Xavier	3	389	November 24, 2021
Disk Encryption on TX2 Jetson TX2 security	4	1422	October 18, 2021
Xavier doesn't boot after Secure Boot (PKC + SBK + KEK2) flash (JetPack 5.1.5 / L4T R35.6.1) Jetson AGX Xavier security	15	181	April 23, 2025
Confirmation/Review on secureboot steps for Xavier NX production kit (custom board) Jetson Xavier NX boot , board-design , security	5	1097	July 29, 2022
Kernel encryption through Secureboot Jetson TX2 kernel , security , nvbugs	11	1797	September 14, 2022
Root file system encryption on jetson nano board Jetson Nano security	4	728	May 4, 2022

Any detailed tutorial/docs on encrypting the rootfs with root-of-trust / TPM / master key provided by the fuses?

Related topics