Home | History | Annotate | Download | only in docs

Lines Matching full:certificate

10 5.  [Certificate Generation Tool](#5--certificate-generation-tool)
45 Certificate Authority (CA) because the CoT is not established by verifying the
46 validity of a certificate's issuer but by the content of the certificate
56 with the hash extracted from the content certificate. The SHA-256 function is
64     The private part of this key is used to sign the BL2 content certificate and
65     the trusted key certificate. The public part is the ROTPK.
71     one of the extension fields in the trusted world certificate.
75     The private part is used to sign the key certificate corresponding to the
77     extension fields in the trusted world certificate.
82     the content certificate for the BL3-X image. The public part is stored in
83     one of the extension fields in the corresponding key certificate.
96 *   **BL2 content certificate**
101 *   **Trusted key certificate**
107 *   **BL3-0 key certificate**
112 *   **BL3-0 content certificate**
116 *   **BL3-1 key certificate**
121 *   **BL3-1 content certificate**
125 *   **BL3-2 key certificate**
130 *   **BL3-2 content certificate**
134 *   **BL3-3 key certificate**
139 *   **BL3-3 content certificate**
153 *   BL1 loads and verifies the BL2 content certificate. The issuer public key is
154     read from the verified certificate. A hash of that key is calculated and
156     registers. If they match, the BL2 hash is read from the certificate.
162     read from the certificate. Control is transferred to the BL2 image if all
165 *   BL2 loads and verifies the trusted key certificate. The issuer public key is
166     read from the verified certificate. A hash of that key is calculated and
169     non-trusted world public keys from the verified certificate.
175 *   BL2 loads and verifies the BL3-x key certificate. The certificate signature
178     certificate.
180 *   BL2 loads and verifies the BL3-x content certificate. The signature is
182     BL2 reads and saves the BL3-x image hash from the certificate.
186 *   BL2 loads and verifies the BL3-3 key certificate. If the signature
188     certificate.
190 *   BL2 loads and verifies the BL3-3 content certificate. If the signature
192     certificate.
197     from the corresponding content certificate. The image authentication succeeds
236 5.  Certificate Generation Tool