OPTIGA™ Trust Forum Discussions
Hello everyone,
I have a question about how to correctly use the OPTIGA Trust M.
I have developped my own PAL and I have been working with the OPTIGA Trust M for 3 months now.
So far, everything is great, I am able to perfom unitary tests provided in the GitHub repository without any issue.
The reset pin of the Trust M is driven by my host processor, and the VDD pin is directly connected to power, so I only do hard resets when I unplug my board.
However, I recently encountered an issue while using the Trust M. Indeed, in order to test the load of work it can handle, I have created a test where the Trust M has to perform 100 AES-128 bit operations, meaning 100 key generations, encryptions and decryptions.
The first 20 - 30 operations are fast and work as expected, but then the responsiveness of the Trust M drops completely and it takes several seconds to perform any operations.
I tried stopping generating keys, opening and closing one or several applications, triggering the reset pin between each operation, but I still get that behavior from the Trust M.
What is even more interesting is that, in order to reset everything, I sometimes unplug my board from the power, but the behavior of the Trust M sometimes remains really slow, sometimes goes back to normal.
I have checked documentations but I haven't seen anything related to performance other then unitary benchmarks.
Is that behavior normal or is there something I am doing wrong ?
Regards,
Maxime
Show LessHi, Thanks anyone for datasheet of SLI 97CSINFX1M00PE which is provided.
I have a case of multiple connections:
2 TLS connections using the Optiga to do the Assymetric key calculation during TLS setup. Problem I have: when 1 of the connections is finished I call optiga_util_close_application (using your library), but that will shutdown the whole Optiga chip (Vdd set low) whilst the other application is still open. How can I make sure that the 1st application is closed (so that another can be started), without shutting down the chip?
Kind regards,
Luc
Show LessIs it possible to configure the accessibility, readability and writability of memory/object slots within Trust X?
https://community.infineon.com/t5/OPTIGA-Trust/Using-Raspberry-Pi-to-send-data-hexadecimal-keys-into-OPTIGA-Trust-X-on-S2GO/m-p/390610/emcs_t/S2h8ZW1haWx8dG9waWNfc3Vic2NyaXB0aW9ufExDRUlLVzJER09LV0RZfDM5MDYxMHxTVUJTQ1JJUFRJT05TfGhL#M152
I would like to use a nr of parallel instances of optiga_util and optiga_ crypto.
Apparently it is possible to have multiple of them at the same time but it is limited to the nr of optiga_cmd instances:
fromsolution reference: "This operation inherently creates an
instance of optiga_cmd if available due to solution constraints (the
number of optiga_cmd instances might be limited)."
How can I know how many instances will be possible?
Kind regards,
Show LessHi forum,
I am wondering if I can use OPTIGA Trust M instead of Trust Charge for evaluation purpose of Qi Wireless Power Transmitter Authentication. I compared both datasheets and I see that "Cryptographic Data and Key Objects" of OPTIGA Trust M is a superset of OPTIGA Trust Charge. So, I believe we can load WPC test certificates to certificate chain slots of Trust M (preferably slot 0) and use it for Qi Authentication. Please share your thoughts and let me know if there are any limitations.
Help is much appreciated.
Show Less
Hi,
May i know whether the Security Controller orderable part number SLI 97CNFX1M00PE is Active / Production Status part, if so can you please provide the evidence please, since these device are using in the some of the JLR ECUs.
Kind Regards,
Jitendra.
Show Less
My goal is to use Raspberry Pi 3 Model B+ (RPi) to write hexadecimal keys/numbers into OPTIGA™ Trust X on the Security Shield2Go board, through a Python program. The communication between RPi and Trust X is through the I2C interface.
May I know are there existing libraries to use? If yes, may I know the procedure to use the library and the procedure to complete the whole I2C setup?
Thanks!
I'm trying to connect OPTIGA™ Trust IoT Security Development Kit(running sample code) to AWS server.
After provisioning using Cirrent Cloud ID service, I could connect the EVK to AWS(over TLS).
It seems that CA certificates (for client certificate) is already installed in AWS server.
---> Is this comprehension correct?
Thanks
Show Less