PXA3xx Boot ROM Reference Manual - Marvell

More documents

Recommendations

Info

PXA3xx Processors and Tavor ProcessorBoot ROM Reference Manual• Section 8.1.4, Samsung OneNAND* Flash, on page 82• Section 8.1.5, SanDisk * Flash, on page 83Note any restrictions or requirements for each flash device. Verification of the image in flash is theresponsibility of the OEM; no image check or verification is performed when the image isprogrammed.12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758Doc. No. MV-S301208-00 Rev. - PUBLIC RELEASE Copyright © 2010 MarvellPage 86
9 Trusted Boot OperationThe following sections provide information about trusted boot operations, including using a trustedimage module, trusted image module validation, flash support, image downloading, preprogrammedflash requirements, and JTAG reenablement.9.1 Trusted Boot Usage CasesThe trusted boot solution is based on the principle of the “chain of trust”, also referred to as layeredtrust (see Figure 8, “Trusted Boot Operation Using the Trusted Image Module). The Marvell ®Trusted Boot ROM is responsible only for securely transferring control to the next layer of software,which is the OEM boot module. The Boot ROM authenticates and checks the integrity of the imagewith the OEM’s platform public verification key. The OEM boot module establishes an OEM’sproprietary layered trust model to securely validate all of the OEM’s supplementary binaries (the OS,applications, data, and so on), as well as the mobile operator’s service provisioning and downloads.The layered solution is implemented using the trusted image module defined in Section 7 "TrustedImage Module" on page 71. The trusted image module holds the security information for some or allof the images loaded into the boot flash device. The trusted image module provides a flexiblemechanism for trusted boot operations using industry-standard RSA and SHA-1 operations.Each layer of software, starting with the Boot ROM, uses the information located in the trusted imagemodule to validate one or more images. The implementation defines the number of images toinclude in the trusted image module for validation, and which layer of software does the validation.Unauthorized modifications to the system software are identified and prevented from running on thesystem.The trusted image module is located in the flash memory, according to the usage models defined inthe following sections. All other image locations are defined in the trusted image module.12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758Copyright © 2010 Marvell PUBLIC RELEASE Doc. No. MV-S301208-00 Rev. -Page 87
Page 1 and 2:
CoverMarvell® PXA3xx Processors an
Page 3 and 4:
Table of Contents1 Boot ROM Functio
Page 5 and 6:
6.3.5 USB Vendor Request Package ..
Page 7 and 8:
Figure 1:PXA3xx Top Level Boot ROM
Page 9 and 10:
Table 42: Host Commands ...........
Page 11 and 12:
1 Boot ROM Functional Overview1.1 G
Page 13 and 14:
Figure 1:PXA3xx Top Level Boot ROM
Page 15 and 16:
Boot ROM Differences2 Boot ROM Diff
Page 17 and 18:
Boot ROM DifferencesTIM/NTIM/OBM Su
Page 19 and 20:
Boot ROM DifferencesPXA31x and Tavo
Page 21 and 22:
Boot ROM DifferencesPXA31x and Tavo
Page 23 and 24:
3 Software RequirementsThis chapter
Page 25 and 26:
Typedef struct S_Reloc{USHORT Heade
Page 27 and 28:
4 Methods for Platform Provisioning
Page 29 and 30:
4. If the same OEM boot module is u
Page 31 and 32:
multiple versions of the Device Key
Page 34 and 35:
PXA3xx Processor and Tavor Processo
Page 36 and 37: PXA3xx Processor and Tavor Processo
Page 72 and 73: PXA3xx Processors and Tavor Process
Page 112: Marvell Semiconductor, Inc.700 Firs
show all

PXA3xx Boot ROM Reference Manual - Marvell

Create successful ePaper yourself

Delete template?

Save as template?