(Adding Joakim)
On Tue, Jan 12, 2016 at 12:08 AM, git git gitfineon@online.de wrote:
Hi,
has anybody tried to activate/implement the Trusted Board Boot (TBB) feature of ARM Trusted Firmware (ATF) on Hikey or any other 96Board, yet?
It would be interesting to get this working but I don't think we've worked on it. Joakim, has anybody in the security WG tried this?
Minimal requirement to run TBB is GENERATE_COT, but it should be possible to only generate these Certificates of Trust (CoT) and add them to the your Firmware Image Package (FIP). I've already tested TBB (incl. CoT) with Juno DevBoard and it worked fine. The 96Boards repository does not mention TBB anywhere. But also in Hikey branch it is possible to set the GENERATE_COT flag and the *.crt files get generated.