Flashing in factory options

Robotics & Edge Computing Jetson & Embedded Systems Jetson Orin Nano
1

I am flashing jetson Orin nano with my FW based on jetpack 6.0 , using nVME. With a board similar to the dev-kit.
I am also implementing secure boot and disc encryption.

For scale I am considering 2 options.

  1. Flashing one device and duplicating its nVME using a dedicated device, and afterwards any new device needs to have its relevant fuses flashed only (maybe some refinment is needed here)

  2. Using dedicated USB HUB with multiple usb cables and using provided mass flash script in Jetpack 6.0

Now here are my considerations:

A. Solution 1 should be faster since the nVME flasher should be much faster
B. When it come to disc encryption, according to the docs To support mass flash, the images are generated one time on the security machine for all devices with a generic key, and the key will be replaced by a per-device unique key during the first boot.

and I think I won’t have this advantage if I duplicate the nVME.

Is it easy to replicate? I saw the instructions in the docs, but it’s not sufficient in my opinion

C. Does flashing the fuses is enough for using a duplicate nVME, or am I missing a step?

3

Hi,

In theory, this should work. Could you try this method using our dev kit first?

Thank you.

4

Thank you for the response. What about item B?

If I duplicate the nVMe I suspect that the generic key and passphrase for disc encryption will be the same for all devices. Which is not the case if I use mass flash, to my understanding.

Is my assumption correct?
and if so is it easy to fix? I saw the instructions in the docs, but it’s not sufficient in my opinion

5

Hi,
Sorry for the late response.

Yes

The process of Replacing the Generic Key with the Per-device Unique Key at First Boot happens during the first boot. As a result, duplicating the NVMe will not allow the generic key to be replaced.

Thanks

7

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.