Hi Team,
Can you answer the following customer questions please?
1. Does the TI module meet the requirement of ETSI EN 303 645 V2.1.0 (2020-04) ?
- „Provision 5.7-1 The consumer IoT device should verify its software using secure boot mechanisms.A hardware root of trust is one way to provide strong attestation as part of a secure boot mechanism. A hardware root of trust is a component of a system from which all other components derive their "trust" - i.e. the source of cryptographic trust within that system. To fulfil its function, the hardware root of trust is reliable and resistant to both physical and logical tampering, as there is no mechanism to determine that the component has failed or been altered. By utilizing a hardware root of trust, a device can have confidence in results of cryptographic functions, such as those utilized for secure boot. A hardware root of trust can be either be backed by mechanisms used for secure storage of credentials or other alternatives providing baseline levels of security assurance proportionate to the required level of security for a given device.“[Page 21, Final draft ETSI EN 303 645 V2.1.0 (2020-04)]
2. If yes, would TI also confirm this to a certification body ?
3. If yes, under which preconditions must be fulfilled by us vis-à-vis the TI software ?
Thank you,
Franz
