SOP for Locking Down Non-Volatile Memory on AGX Orin SOM


We are looking for ways to write protect the eMMC/NOR flash on AGX Orin as well as sanitization procedure for bringing the units out of controlled environments.

Hi sargsyanga,

Are you using the devkit or custom board for AGX Orin?
What’s your Jetpack version in use?

Are you looking for secure boot or disk encryption?


We are currently using the Orin devkit, however we are in process of designing a custom carrier for the final design.

The issue is two-fold:
a) Prevent modifications to persistent storage/config
b) Avoid data leak into uncontrolled environments

Ideally, preventing write access to eMMC/NOR flash would solve the problem, however that is not something we seem to be able to address with secure boot.

Whole eMMC disk encryption might be an option for protecting the data coming off of controlled environment, however we haven’t found a way to encrypt the NOR/bootloader.

You could use PKC+SBK to protect bootloader.

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.