Builtin keys on devices with Secure Engine#

These key ID values belong to the builtin range of PSA, and allow access to the keys which respectively are and can be preprovisioned in Secure Engine devices.

Refer to Built-in keys or AN1311 for more information on the usage of builtin keys through PSA Crypto.

Macros#

#define
SL_SE_BUILTIN_KEY_APPLICATION_ATTESTATION_ID (MBEDTLS_PSA_KEY_ID_BUILTIN_MIN + 5)

Vendor Key ID for the built-in application identity key on Vault High devices.

#define
SL_SE_BUILTIN_KEY_SYSTEM_ATTESTATION_ID (MBEDTLS_PSA_KEY_ID_BUILTIN_MIN + 4)

Vendor Key ID for the built-in SE identity key on Vault High devices.

#define
SL_SE_BUILTIN_KEY_SECUREBOOT_ID (MBEDTLS_PSA_KEY_ID_BUILTIN_MIN + 1)

Vendor Key ID for the Secure Boot verifying key provisioned to the Secure Engine.

#define
SL_SE_BUILTIN_KEY_SECUREDEBUG_ID (MBEDTLS_PSA_KEY_ID_BUILTIN_MIN + 2)

Vendor Key ID for the Secure Debug verifying key provisioned to the Secure Engine.

#define
SL_SE_BUILTIN_KEY_AES128_ID (MBEDTLS_PSA_KEY_ID_BUILTIN_MIN + 3)

Vendor Key ID for AES-128 key provisioned to the Secure Engine.

#define
SL_SE_BUILTIN_KEY_TRUSTZONE_ID (MBEDTLS_PSA_KEY_ID_BUILTIN_MIN + 6)

Vendor Key ID for the TrustZone root key.

#define
SL_SE_BUILTIN_KEY_AES128_ALG (SL_SE_BUILTIN_KEY_AES128_ALG_CONFIG)

Algorithm with which the SL_SE_BUILTIN_KEY_AES128_ID key will be used.