ESP32 Security - PKI Support

askpatrickw · Postby **askpatrickw** » Fri Aug 07, 2020 6:58 pm

I see the ESP32 supports secure boot and flash encryption:
https://docs.espressif.com/projects/esp ... ot-v2.html
https://docs.espressif.com/projects/esp ... ption.html

I also see there is an AES based approach and in the ESP32V3 a PKI based approach:
https://medium.com/the-esp-journal/unde ... 483e465724 (search for ESP32V3)

Is the PKI support in the ESP32V3 limited to only these features or can we use this for other features, such as IoT Device Identity with Azure IoT Device Provisioning?

Thanks for the help!

WiFive · Postby **WiFive** » Sun Aug 09, 2020 1:52 am

There is no separate secure element hardware with private key storage. If you need that maybe you want wroom32-se? Otherwise just rely on secure boot and flash encryption to protect your keys. You could sign and verify your key partitions with the same PKI.

Franco · Postby **Franco** » Fri Aug 14, 2020 1:05 pm

Sorry just saw your post. If you can use the ESP32-S2 in your application, the Digital Signature Peripheral may be helpful. It is explained here:
https://medium.com/the-esp-journal/esp3 ... 5453f98590

askpatrickw · Postby **askpatrickw** » Thu Sep 10, 2020 5:05 am

Thanks, I was checking if the ESP32 had similar security features as the S2. It does not, as you point out, the S2 is way to go for these needs.

Thank you !
-p

ESP32 Security - PKI Support

ESP32 Security - PKI Support

Re: ESP32 Security - PKI Support

Re: ESP32 Security - PKI Support

Re: ESP32 Security - PKI Support

Who is online

About Us

Extra

Information