Hi,
I have two questions regarding secure booting for AM64x devices.
1) Suppose first time I just programmed standard keys and set KEYREV to 1 or 2. Can I program backup keys seperately after that? if Yes, then building tiboot3.bin is the same as first time? or require to be signed with standard keys.
2) what if standard key is compromised, how to tell device that standard keys is now compromised, from now use backup key to validate uboot?
Thanks
