Factory Secure Key Provisioning tool

Hello,

For our production process we want to use the Factory Secure Key Provisioning procedure, it’s hard to find information about but as far as I can tell we need to engage an Nvidia representative.

Recommendation of use: Secure Boot — NVIDIA Jetson Linux Developer Guide 1 documentation

It says refer to Using the Fuse Burning Toolkit for T234 which does not exist on the download center

fskp_t234.bin however exists in the manifest: Package Manifest — NVIDIA Jetson Linux Developer Guide 1 documentation

Drive OS seems to provide a hint of how it works: Create Fskp Firmware | NVIDIA Docs

So, my question is as such:

• Is the Factory Secure Key Provisioning(FSKP) tool an option for our company to use in our production environment, can we get the necessary key to make this possible along with any documentation required to work with it?
• If not, can you provide us something or guide us into making the fuse burning process secure?

I’m aware this might not necessarily be the correct place but I asked enterprise support, whom referred me to customer support, who then referred me to this forum again.

Thank you,
Jesse

I will forward this request to internal team to do further discusson for how to do the support.
Thanks

Thank you, it’s quite important for us as otherwise there’s no way to properly secure this flow without costly measures

Perhaps a tip for the Jetson team, the possiblity to do this like the initial secure programming for AM62x family and alike is very helpful as this removes any need for specific vendor engagement

hello jessevg,

may I have more details about AM62x family?

I just meant for future products 😅

AM62x allows encrypting your private keys for fuse burning with a unique per device key and you can do this procedure on your own, for Jetson it seems you need to engage Nvidia separately just for the encryption key

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.