Manufacturing Flow for 700 series#

The following section describe the manufacturing flow for end devices (ZGM130S, etc.) and gateways using EFR32ZG14. It is not recommended to use the Silicon Labs public signing key and encryption key used in the apps.

End Devices#

The manufacturing production test flow for end devices ZGM130S (based on EFR32FG13) must incorporate the following steps:

  • Perform product-specific testing such as I/O, etc. Refer to the RAILtest User Guide.

  • Perform RF testing, etc. Use RAILtest. Refer to [7] regarding RF testing. The 500 Series ApplicationTestPoll function is not available in the 700.

  • Set the manufacturing codes:

    1. Download an OTA bootloader to the SoC target via the Serial Wire Debug (SWD) interface.

    2. Write your own public signing key and encryption key to the SoC target via the SWD interface. A readme.txt file in the Z-Wave SDK release describes how to generate your own keys and write them to the device Lock Bits Page. The path to the readme file in the Z-Wave SDK release is:

      <Your ZWAVE Installation Directory>\BootLoader\sample-keys\

    3. Download the application firmware to the SoC target via the SWD interface. Do not set the Lock Bit in this step.

    4. The application in the SoC signals when the security materials, etc., are in place in the Lock Bit Page via the manufacturing token TOKEN_MFG_ZW_INITIALIZED. The following steps are performed in the SoC at the application startup:

      1. If public/private keypair and QR code are already present in the Lock Bit page (check manufacturing token TOKEN_MFG_ZW_INITIALIZED), jump to the last step continuing normal operation. Refer to [1] for details about manufacturing tokens.

      2. Calculate the public/private key based on Curve25519.

      3. Construct the QR code using the public key, product type, and product ID (latter two from the application) as described in [2].

      4. Calculate the SHA-1 checksum as per [2] and incorporate it in the QR code.

      5. Write the QR code to the Lock Bit Page as manufacturing token TOKEN_MFG_ZW_QR_CODE.

      6. Write the private/public keypair to the Lock Bit Page as manufacturing tokens TOKEN_MFG_ZW_PRK and TOKEN_MFG_ZW_PUK.

      7. Write completion of the Lock Bit Page initialization as manufacturing token TOKEN_MFG_ZW_INITIALIZED. This token can be used to sync completion of data to Lock Bits Page in a production system.

      8. Continue normal startup.

    5. Read the QR code from the SoC.

    6. Set the Lock Bit Page [6] to protect IP and security material against untrusted entities.

    7. Label the product with the QR code. Refer to [5] for details.

The QR code format enables customization of the QR code with extra TLVs (e.g., MaxInclusionRequestInterval, proprietary serial number, etc.) instead of using the internally generated one. The manufacturing line programmer must then read out the public key, etc., compose the wanted QR code, and print it to a label. The new QR code can also be stored in the User Data Page, for example.

Set the following registers in the Lock Bit Page [6] as a minimum to protect IP and security material:

DLW = Disable the debug port by clearing the four LSBs ULW = Ignore MLW = Optional (disable mass erase through MSC) ALW = Optional (disallow a mass erase operation) CLW1 = Ignore CLW2 = Ignore PLW[0…121] = Ignore

Gateways#

The manufacturing production test flow for gateways using EFR32ZG14 (based on EFR32FG14) must incorporate the following steps:

  1. Product-specific testing such as I/O, etc. Refer to Using RAIL Test under the SDK documentation section in the Simplicity Studio distribution.

  2. Calibrate the 39MHz crystal used on each EFR32ZG14-based product to ensure the RF frequency is correct, see [4]. The crystal calibration can be done by using a RAILtest firmware, see KB - Z-Wave 700: EFR32ZG14 CTUNE Calibration.

  3. The RF performance testing for each product can also be done by using the same RAILtest firmware. Refer to [7] regarding RF performance testing. The 500 Series ApplicationTestPoll function is not available in 700.

  4. Download Z-Wave OTW bootloader to the SoC target via Serial Wire Debug (SWD) interface.

  5. Generate your own public signing key and encryption key and write them to the SoC target via the Serial Wire Debug (SWD) interface. These keys are necessary for upgrading the firmware in the field. Following simplicity commander commands will be used for writing keys into the device’s Lock Bits Page.

    commander flash --tokengroup znet --tokenfile zg14_encrypt.key --tokenfile zg14_sign.key-tokens.txt -d EFR32ZG14

    The key files (do not use the Silicon Labs keys) are locked in the Z-Wave release in the following path on your SDK installation

    <Your ZWAVE Installation Directory>\BootLoader\ZG14-keys\

  6. Download the application firmware to the SoC target via the Serial Wire Debug (SWD) interface. Do not set the Lock Bit in this step.

  7. The application in the SoC signals when security materials, etc., are in place in the Lock Bit Page via manufacturing token TOKEN_MFG_ZW_INITIALIZED. The following steps are performed in the SoC at the application startup:

    1. If the public/private keypair and QR code are already present in the Lock Bit page (Check manufacturing token TOKEN_MFG_ZW_INITIALIZED), jump to the last step continuing normal operation. Refer to [1] for details about manufacturing tokens.

    2. Calculate the public/private key based on Curve25519.

    3. Construct the QR code using public key, product type, and product ID (latter two from application) as described in [2].

    4. Calculate SHA-1 checksum as per [2] and incorporate it in the QR code.

    5. Write the QR code to Lock Bit Page as manufacturing token TOKEN_MFG_ZW_QR_CODE.

    6. Write private/public keypair to the Lock Bit Page as manufacturing tokens TOKEN_MFG_ZW_PRK and TOKEN_MFG_ZW_PUK.

    7. Write completion of Lock Bit Page initialization as manufacturing token TOKEN_MFG_ZW_INITIALIZED. This token can be used to sync completion of data to the Lock Bits Page in a production system.

    8. Continue normal startup.

  8. Read the QR code from the SoC.

  9. Set the Lock Bit Page [6] to protect IP and security material against untrusted entities.

  10. Label the product with the QR code. It is optional to label a gateway in case the QR code is accessible via the UI. Refer to [5] for details.

The QR code format enables customization of the QR code with extra TLVs (e.g., MaxInclusionRequestInterval, proprietary serial number, etc.) instead of using the internally generated one. The manufacturing line programmer must then read out the public key, etc., and compose the wanted QR code and print it to a label. The new QR code can also be stored in, e.g., the User Data Page.

Set the following registers in the Lock Bit Page [6] as a minimum to protect IP and security material:

DLW = Disable the debug port by clearing the four LSBs ULW = Ignore MLW = Optional (disable mass erase through MSC) ALW = Optional (disallow a mass erase operation) CLW1 = Ignore CLW2 = Ignore PLW[0…121] = Ignore