Part Number: AM2432
Hi,
I am using AM2432 with the Industrial SDK 11.00.00.08.
I successfully converted a device from HS-FS to HS-FE using KeyWriter. Then I flashed the SBL and the application, both signed with my SMPK, and everything is working properly.
The command I used to generate the certificate to be provided to the keywriter is:
./gen_keywr_cert.sh -t tifek/ti_fek_public.pem -s mykey.pem --keycnt 1 --keyrev 1So I chose a single SMPK without the BMPK, and I didn't use either SMEK or BMEK.
Now I would also like to add these new features: use a dual certificate with two key set, specify my key for encryption and have SBL antirollback.
If I generate a new certificate with these new features now, could I use the KeyWriter application on a device that has already been converted to HS-SE using the previous certificate? Or, even if I didn’t specify SMEK, BMPK and BMEK and SBL SWRV in the previous certificate, is it no longer possible to write these keys?
Thank you,
Best Regards,
Andrea
