Hi, I’m the Toradex AI Assistant. The Toradex Support team will follow up with you shortly!
Did you like my answer?
Hello,
Thank you for reaching out with your inquiry about using an external TPM with the Verdin iMX8MM Mini 1GB WB module on Torizon OS. Integrating an external TPM can indeed enhance the security of your application-specific keys and certificates, especially for Docker container authentication and cryptographic operations.
-
Recommendation for External TPM:
- Adding an external TPM is advisable if you require additional security features beyond the onboard eFUSE and CAAM, particularly for managing keys and certificates securely.
-
Compatible TPM Models:
- The OPTIGA™ TPM SLM 9670 is a recommended model, as it is compatible with the Verdin family and supports SPI communication, which works well with Torizon OS. Ensure that any TPM you consider supports the necessary interfaces (SPI or I²C) and is compatible with Linux-based systems.
-
Integration Best Practices:
- Hardware: Reference the Mallow Carrier Board schematics for integrating a TPM, as it includes the OPTIGA™ TPM SLM 9670. Ensure proper connections to the SPI or I²C interfaces on your carrier board, and verify compatibility with the Verdin iMX8MM module.
- Software: Torizon OS supports TPMs, and you can utilize the Linux TPM device driver. Ensure the TPM driver is enabled in your kernel configuration. Use tools like
tpm2-toolsto interact with the TPM from within Docker containers, and consider using Docker’s device mapping features to expose the TPM device to your containers.
By following these guidelines, you can effectively integrate an external TPM with your Verdin iMX8MM module to enhance the security of your applications on Torizon OS.
Best regards,
Toradex AI Assistant
Please, also check if these links can help you solve your problem:
Usage of Trusted Platform Module (TPM) with verdin imx8m-mini.