I’m currently working on security hardening of our system based on a Colibri T30 module.
I know that Tegra3 SoC have the necessary hardware to perform secure/trusted boot but it’s difficult if not impossible to get reliable information and documentation on how this functionality is implemented and how it can be enabled.
I could find consistent documentation for Jetson TK1, TX1, TX2 on NVIDIA website but nothing for Tegra 3.
NVIDIA documentation also mentions this possibility in its “Tegra Boot Flow” page in the Security section but explicitely lets the topic open without details:
Details of these features are beyond the scope of this document.
Would you have some documentation on these features or links to tools/software for Tegra3 (Colibri/Apalis T30) ?
Given that Tegra 3 is now clearly out of focus for NVIDIA I don’t expect any new documentation and tools from them but I perhaps missed some well hidden documentation/how-to/tools.
such detailed documentation is only
available under NVIDIA’s NDA
Do you know by chance if getting such an NDA with NVIDIA is doable for end customers (= only paper work) or is it limited to huge accounts and OEMs ? Do you know if any of your final customers successfully went through the process ?
Any pointer (Internet link or contact person) on where/how such an NDA request can be initiated ? I could not find anything neither on NVIDIA nor on Toradex websites.
such detailed documentation is only available under NVIDIA’s NDA
Do you know by chance if getting such an NDA with NVIDIA is doable for end customers (= only paper work) or is it limited to huge accounts and OEMs ?
I guess in general it is doable. We used to having to do this even to get our customers access to the most basic of information (e.g. data sheet and/or TRM). However I doubt you will get any useful information about secure boot as not even we as Toradex ever got anything the like.
Do you know if any of your final customers successfully went through the process ?
Through the process of getting a three way NDA with us and NVIDIA, sure we did dozens of those. Through the process of getting secure boot to work, I don’t believe so.
Any pointer (Internet link or contact person) on where/how such an NDA request can be initiated ? I could not find anything neither on NVIDIA nor on Toradex websites
You may write to our support email and I will try to get it forwarded to resp. parties.