| <!DOCTYPE html> |
| <!-- |
| Copyright 2019 NXP |
| |
| This software is owned or controlled by NXP and may only be used |
| strictly in accordance with the applicable license terms. By expressly |
| accepting such terms or by downloading, installing, activating and/or |
| otherwise using the software, you are agreeing that you have read, and |
| that you agree to comply with and are bound by, such license terms. If |
| you do not agree to be bound by the applicable license terms, then you |
| may not retain, install, activate or otherwise use the software. |
| --> |
| |
| <html xmlns="http://www.w3.org/1999/xhtml"> |
| <head> |
| <meta charset="utf-8" /> |
| <title>11.8.1.1. Certificate Chains : ROOT — Plug & Trust MW v03.00.05 documentation</title> |
| <link rel="stylesheet" href="../../../../_static/bootstrap-sphinx.css" type="text/css" /> |
| <link rel="stylesheet" href="../../../../_static/pygments.css" type="text/css" /> |
| <link rel="stylesheet" type="text/css" href="../../../../_static/graphviz.css" /> |
| <script id="documentation_options" data-url_root="../../../../" src="../../../../_static/documentation_options.js"></script> |
| <script src="../../../../_static/jquery.js"></script> |
| <script src="../../../../_static/underscore.js"></script> |
| <script src="../../../../_static/doctools.js"></script> |
| <script src="../../../../_static/language_data.js"></script> |
| <link rel="index" title="Index" href="../../../../genindex.html" /> |
| <link rel="search" title="Search" href="../../../../search.html" /> |
| <link rel="next" title="11.8.1.2. Certificate Chains : DEV Kit" href="../0004_A1F4/Readme.html" /> |
| <link rel="prev" title="11.8. Certificate Chains" href="../../Readme.html" /> |
| <meta charset='utf-8'> |
| <meta http-equiv='X-UA-Compatible' content='IE=edge,chrome=1'> |
| <meta name='viewport' content='width=device-width, initial-scale=1.0, maximum-scale=1'> |
| <meta name="apple-mobile-web-app-capable" content="yes"> |
| <script type="text/javascript" src="../../../../_static/js/jquery-1.11.0.min.js "></script> |
| <script type="text/javascript" src="../../../../_static/js/jquery-fix.js "></script> |
| <script type="text/javascript" src="../../../../_static/bootstrap-3.3.7/js/bootstrap.min.js "></script> |
| <script type="text/javascript" src="../../../../_static/bootstrap-sphinx.js "></script> |
| |
| </head><body> |
| |
| <div id="navbar" class="navbar navbar-inverse navbar-default navbar-fixed-top"> |
| <div class="container"> |
| <div class="navbar-header"> |
| <!-- .btn-navbar is used as the toggle for collapsed navbar content --> |
| <button type="button" class="navbar-toggle" data-toggle="collapse" data-target=".nav-collapse"> |
| <span class="icon-bar"></span> |
| <span class="icon-bar"></span> |
| <span class="icon-bar"></span> |
| </button> |
| <a class="navbar-brand" href="../../../../toc.html"><span><img src="../../../../_static/NXP_logo_JPG.jpg"></span> |
| MW</a> |
| <span class="navbar-text navbar-version pull-left"><b>v03.00.05</b></span> |
| </div> |
| |
| <div class="collapse navbar-collapse nav-collapse"> |
| <ul class="nav navbar-nav"> |
| |
| |
| <li class="dropdown globaltoc-container"> |
| <a role="button" |
| id="dLabelGlobalToc" |
| data-toggle="dropdown" |
| data-target="#" |
| href="../../../../toc.html">TOC <b class="caret"></b></a> |
| <ul class="dropdown-menu globaltoc" |
| role="menu" |
| aria-labelledby="dLabelGlobalToc"><ul class="current"> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../index.html">1. NXP Plug & Trust Middleware</a><ul> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../organization-of-documentation.html">1.1. Organization of Documentation</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../folder-structure.html">1.2. Folder Structure</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../sw-prerequisites.html">1.3. List of Platform Prerequisites</a></li> |
| </ul> |
| </li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../changes/index.html">2. Changes</a><ul> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/pending.html">2.1. Pending Refactoring items</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/pending.html#known-limitations">2.2. Known limitations</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v03_00_05.html">2.3. Release <code class="docutils literal notranslate"><span class="pre">v03.00.05</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v03_00_04.html">2.4. Release <code class="docutils literal notranslate"><span class="pre">v03.00.04</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v03_00_03.html">2.5. Release <code class="docutils literal notranslate"><span class="pre">v03.00.03</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v03_00_02.html">2.6. Release <code class="docutils literal notranslate"><span class="pre">v03.00.02</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_16_01.html">2.7. Release <code class="docutils literal notranslate"><span class="pre">v02.16.01</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_16_00.html">2.8. Release <code class="docutils literal notranslate"><span class="pre">v02.16.00</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_15_00.html">2.9. Release <code class="docutils literal notranslate"><span class="pre">v02.15.00</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_14_00.html">2.10. Release <code class="docutils literal notranslate"><span class="pre">v02.14.00</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_12_00.html">2.11. Release <code class="docutils literal notranslate"><span class="pre">v02.12.05</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_12_00.html#release-v02-12-04">2.12. Release <code class="docutils literal notranslate"><span class="pre">v02.12.04</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_12_00.html#release-v02-12-03">2.13. Release <code class="docutils literal notranslate"><span class="pre">v02.12.03</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_12_00.html#release-v02-12-02">2.14. Release <code class="docutils literal notranslate"><span class="pre">v02.12.02</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_12_00.html#release-v02-12-01">2.15. Release <code class="docutils literal notranslate"><span class="pre">v02.12.01</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_12_00.html#release-v02-12-00">2.16. Release <code class="docutils literal notranslate"><span class="pre">v02.12.00</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_11_03.html">2.17. Release <code class="docutils literal notranslate"><span class="pre">v02.11.03</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_11_01.html">2.18. Internal Release <code class="docutils literal notranslate"><span class="pre">v02.11.01</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_11_00.html">2.19. Release <code class="docutils literal notranslate"><span class="pre">v02.11.00</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_10_00.html">2.20. Release <code class="docutils literal notranslate"><span class="pre">v02.10.00</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_09_00.html">2.21. Release <code class="docutils literal notranslate"><span class="pre">v02.09.00</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_07_00.html">2.22. Release <code class="docutils literal notranslate"><span class="pre">v02.07.00</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_06_00.html">2.23. Release <code class="docutils literal notranslate"><span class="pre">v02.06.00</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_05_00_to_v02_03_00.html">2.24. Release <code class="docutils literal notranslate"><span class="pre">v02.05.00</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_05_00_to_v02_03_00.html#release-v02-04-00">2.25. Release <code class="docutils literal notranslate"><span class="pre">v02.04.00</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../changes/v02_05_00_to_v02_03_00.html#release-02-03-00">2.26. Release <code class="docutils literal notranslate"><span class="pre">02.03.00</span></code></a></li> |
| </ul> |
| </li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../stack/index.html">3. Plug & Trust MW Stack</a><ul> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/features.html">3.1. Features</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/features.html#plug-trust-mw-block-diagram">3.2. Plug & Trust MW : Block Diagram</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../sss-apis.html">3.3. SSS APIs</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/se05xfeatures.html">3.4. SSS APIs: SE051 vs SE050</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/param_checks.html">3.5. Parameter Check & Conventions</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/i2cm.html">3.6. I2CM / Secure Sensor</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/logging.html">3.7. Logging</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/feature-file.html">3.8. Feature File - <code class="docutils literal notranslate"><span class="pre">fsl_sss_ftr.h</span></code></a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/platf-scp-from-fs.html">3.9. Using Platform SCP Keys from File System</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/auth/auth-objects.html">3.10. Auth Objects</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/auth/auth-objects-userid.html">3.11. Auth Objects : UserID</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/auth/auth-objects-aeskey.html">3.12. Auth Objects : AESKey</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/auth/auth-objects-eckey.html">3.13. Auth Objects : ECKey</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/key-id-range.html">3.14. Key Id Range and Purpose</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/key-id-range.html#authentication-keys">3.15. Authentication Keys</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../stack/key-id-range.html#trust-provisioned-keyids">3.16. Trust provisioned KeyIDs</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../sss/ex/doc/puf-scp03.html">3.17. SCP03 with PUF</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../sss/doc/sss_heap_management.html">3.18. SSS Heap Management</a></li> |
| </ul> |
| </li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../building/index.html">4. Building / Compiling</a><ul> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../building/windows.html">4.1. Windows Build</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../building/frdm-k64f-sdk.html">4.2. Import MCUXPresso projects from SDK</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../building/frdm-k64f-cmake.html">4.3. Freedom K64F Build (CMake - Advanced)</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../building/imx6.html">4.4. i.MX Linux Build</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../building/rpi3.html">4.5. Raspberry Pi Build</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../building/cmake.html">4.6. CMake</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../scripts/cmake_options.html">4.7. CMake Options</a></li> |
| </ul> |
| </li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../index.html">5. Demo and Examples</a><ul> |
| <li class="toctree-l2"><a class="reference internal" href="../../../index.html#demo-list">5.1. Demo List</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../index.html#sss-api-examples">5.2. SSS API Examples</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../index.html#cloud-demos">5.3. Cloud Demos</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../index.html#linux-specific-demos">5.4. Linux Specific Demos</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../index.html#opc-ua-example">5.5. OPC-UA Example</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../index.html#arm-psa-example">5.6. ARM PSA Example</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../index.html#se05x-examples">5.7. SE05X Examples</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../index.html#openssl-examples">5.8. OpenSSL Examples</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../index.html#tests-for-user-crypto">5.9. Tests for User Crypto</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../index.html#nxpnfcrdlib-examples">5.10. NXPNFCRDLIB examples</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../index.html#ease-of-use-examples">5.11. Ease-of-Use examples</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../index.html#semslite-examples">5.12. Semslite examples</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../index.html#puf-examples">5.13. PUF examples</a></li> |
| </ul> |
| </li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../edgelock2go-agent.html">6. NXP EdgeLock 2GO Agent</a><ul> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../nxp_iot_agent/doc/introduction.html">6.1. Introduction</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../nxp_iot_agent/doc/introduction.html#building-and-running-the-edgelock-2go-agent">6.2. Building and running the EdgeLock 2GO agent</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../nxp_iot_agent/doc/introduction.html#datastore-keystore">6.3. Datastore / Keystore</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../nxp_iot_agent/doc/introduction.html#connection-to-the-edgelock-2go-cloud-service">6.4. Connection to the EdgeLock 2GO cloud service</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../nxp_iot_agent/doc/introduction.html#claim-codes">6.5. Claim Codes</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../nxp_iot_agent/doc/edgelock2go_agent_apis.html">6.6. API</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../nxp_iot_agent/doc/readme_usage_examples.html">6.7. Usage Examples</a></li> |
| </ul> |
| </li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../semslite/doc/index.html">7. SEMS Lite Agent</a><ul> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../semslite/doc/sems_lite_overview.html">7.1. SEMS Lite Overview (Only for SE051)</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../semslite/doc/sems_lite_package.html">7.2. Update Package</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../semslite/doc/sems_lite_usage.html">7.3. SEMS Lite Agent Usage</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../semslite/doc/sems_lite_mgmt_api.html">7.4. SEMS Lite management APIs</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../semslite/doc/sems_lite_process.html">7.5. SEMS Lite Agent Package Load Process</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../semslite/doc/sems_lite_api.html">7.6. APIs</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../semslite/doc/sems_lite_known_issue.html">7.7. SEMS Lite Known Issue</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../semslite/doc/demo_update.html">7.8. SEMS Lite DEMOs</a></li> |
| </ul> |
| </li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../plugins/index.html">8. Plugins / Add-ins</a><ul> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../sss/plugin/openssl/scripts/readme.html">8.1. Introduction on OpenSSL engine</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../sss/plugin/mbedtls/scripts/readme.html">8.2. Introduction on mbedTLS ALT Implementation</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../sss/plugin/psa/Readme.html">8.3. Platform Security Architecture</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../plugins/akm.html">8.4. Android Key master</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../sss/plugin/open62541/readme.html">8.5. Introduction on Open62541 (OPC UA stack)</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../plugins/wifiEAP/wifiEAP.html">8.6. WiFi EAP Demo with Raspberry Pi3</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../plugins/pkcs11.html">8.7. PKCS#11 Standalone Library</a></li> |
| </ul> |
| </li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../cli-tool.html">9. CLI Tool</a><ul> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../pycli/doc/introduction.html">9.1. Introduction</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../pycli/doc/block-diagram.html">9.2. Block Diagram</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../pycli/doc/pre-steps.html">9.3. Steps needed before running <code class="docutils literal notranslate"><span class="pre">ssscli</span></code> tool</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../pycli/doc/running.html">9.4. Running the <code class="docutils literal notranslate"><span class="pre">ssscli</span></code> tool - Windows</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../pycli/Provisioning/readme.html">9.5. CLI Provisioning</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../pycli/doc/readme_usage_examples.html">9.6. Usage Examples</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../pycli/doc/cli_commands_list.html">9.7. List of <code class="docutils literal notranslate"><span class="pre">ssscli</span></code> commands</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../pycli/doc/cli_data_format.html">9.8. CLI Data formats</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../pycli/doc/cli_object_policy.html">9.9. Object Policies Through ssscli</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/upload_se05x_using_pycli.html">9.10. Upload keys and certificates to SE05X using ssscli tool</a></li> |
| </ul> |
| </li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../a71ch.html">10. A71CH</a><ul> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../a71ch/a71ch_sss.html">10.1. A71CH and SSS API</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../a71ch/a71ch_miscellaneous.html">10.2. Miscellaneous</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../a71ch/a71ch_legacy_host_api.html">10.3. A71CH Legacy API</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../a71ch/a71ch_legacy_hlse_api.html">10.4. A71CH Legacy HLSE (Generic) API</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../a71ch/a71ch_configure_tool.html">10.5. A71CH Legacy Configure Tool</a></li> |
| </ul> |
| </li> |
| <li class="toctree-l1 current"><a class="reference internal" href="../../../../appendix.html">11. Appendix</a><ul class="current"> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/glossary.html">11.1. Glossary</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/vcom.html">11.2. APDU Commands over VCOM</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/vs2019-setup.html">11.3. Visual Studio 2019 Setup</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/ide_mcux.html">11.4. Setting up MCUXPresso IDE</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../dev-platforms.html">11.5. Development Platforms</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/se_uid.html">11.6. How to get SE Platform Information and UID</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/version_info.html">11.7. Version Information</a></li> |
| <li class="toctree-l2 current"><a class="reference internal" href="../../Readme.html">11.8. Certificate Chains</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/rjct_server.html">11.9. JRCP_v1 Server</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/platfscp.html">11.10. Using own Platform SCP03 Keys</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/apdu_write_to_buffer.html">11.11. Write APDU to buffer</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../api/api_list.html">11.12. Plug & Trust MW APIs</a></li> |
| </ul> |
| </li> |
| </ul> |
| </ul> |
| </li> |
| |
| <li class="dropdown"> |
| <a role="button" |
| id="dLabelLocalToc" |
| data-toggle="dropdown" |
| data-target="#" |
| href="#">Page <b class="caret"></b></a> |
| <ul class="dropdown-menu localtoc" |
| role="menu" |
| aria-labelledby="dLabelLocalToc"><ul> |
| <li><a class="reference internal" href="#">11.8.1.1. Certificate Chains : ROOT</a><ul> |
| <li><a class="reference internal" href="#ecc">11.8.1.1.1. ECC</a><ul> |
| <li><a class="reference internal" href="#root-ca">11.8.1.1.1.1. ROOT CA</a></li> |
| <li><a class="reference internal" href="#intermediate-ca">11.8.1.1.1.2. Intermediate CA</a></li> |
| </ul> |
| </li> |
| <li><a class="reference internal" href="#rsa">11.8.1.1.2. RSA</a><ul> |
| <li><a class="reference internal" href="#id1">11.8.1.1.2.1. ROOT CA</a></li> |
| <li><a class="reference internal" href="#id2">11.8.1.1.2.2. Intermediate CA</a></li> |
| </ul> |
| </li> |
| </ul> |
| </li> |
| </ul> |
| </ul> |
| </li> |
| |
| |
| |
| |
| |
| <li> |
| <a href="../../Readme.html" title="Previous Chapter: 11.8. Certificate Chains"><span class="glyphicon glyphicon-chevron-left visible-sm"></span><span class="hidden-sm hidden-tablet">« 11.8. Certifi...</span> |
| </a> |
| </li> |
| <li> |
| <a href="../0004_A1F4/Readme.html" title="Next Chapter: 11.8.1.2. Certificate Chains : DEV Kit"><span class="glyphicon glyphicon-chevron-right visible-sm"></span><span class="hidden-sm hidden-tablet">11.8.1.2. Cer... »</span> |
| </a> |
| </li> |
| |
| |
| |
| |
| |
| </ul> |
| |
| |
| |
| </div> |
| </div> |
| </div> |
| |
| <div class="container"> |
| <div class="row"> |
| <div class="col-md-3"> |
| <div id="sidebar" class="bs-sidenav" role="complementary"> |
| |
| <div class="sidebar-header"> |
| <h3>Plug & Trust MW</h3> |
| </div> |
| |
| <div class="row"> |
| <ul class="current"> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../index.html">1. NXP Plug & Trust Middleware</a></li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../changes/index.html">2. Changes</a></li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../stack/index.html">3. Plug & Trust MW Stack</a></li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../building/index.html">4. Building / Compiling</a></li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../index.html">5. Demo and Examples</a></li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../edgelock2go-agent.html">6. NXP EdgeLock 2GO Agent</a></li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../semslite/doc/index.html">7. SEMS Lite Agent</a></li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../plugins/index.html">8. Plugins / Add-ins</a></li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../cli-tool.html">9. CLI Tool</a></li> |
| <li class="toctree-l1"><a class="reference internal" href="../../../../a71ch.html">10. A71CH</a></li> |
| <li class="toctree-l1 current"><a class="reference internal" href="../../../../appendix.html">11. Appendix</a><ul class="current"> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/glossary.html">11.1. Glossary</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/vcom.html">11.2. APDU Commands over VCOM</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/vs2019-setup.html">11.3. Visual Studio 2019 Setup</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/ide_mcux.html">11.4. Setting up MCUXPresso IDE</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../dev-platforms.html">11.5. Development Platforms</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/se_uid.html">11.6. How to get SE Platform Information and UID</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/version_info.html">11.7. Version Information</a></li> |
| <li class="toctree-l2 current"><a class="reference internal" href="../../Readme.html">11.8. Certificate Chains</a><ul class="current"> |
| <li class="toctree-l3 current"><a class="reference internal" href="../../Readme.html#se050-certificate-chains">11.8.1. SE050 Certificate Chains</a></li> |
| <li class="toctree-l3"><a class="reference internal" href="../../Readme.html#se051-certificate-chains">11.8.2. SE051 Certificate Chains</a></li> |
| </ul> |
| </li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/rjct_server.html">11.9. JRCP_v1 Server</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/platfscp.html">11.10. Using own Platform SCP03 Keys</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../appendix/apdu_write_to_buffer.html">11.11. Write APDU to buffer</a></li> |
| <li class="toctree-l2"><a class="reference internal" href="../../../../api/api_list.html">11.12. Plug & Trust MW APIs</a></li> |
| </ul> |
| </li> |
| </ul> |
| |
| </div> |
| <div class="row"> |
| <form class="form" action="../../../../search.html" method="get"> |
| <div class="form-group"> |
| <label for="Search">Search:</label> |
| <input type="text" name="q" class="form-control" placeholder="Search" /> |
| </div> |
| <input type="hidden" name="check_keywords" value="yes" /> |
| <input type="hidden" name="area" value="default" /> |
| </form> |
| </div> |
| </div> |
| </div> |
| <div class="body col-md-9 content" role="main"> |
| |
| <div class="section" id="certificate-chains-root"> |
| <span id="cert-chains"></span><h1><span class="section-number">11.8.1.1. </span>Certificate Chains : ROOT<a class="headerlink" href="#certificate-chains-root" title="Permalink to this headline">¶</a></h1> |
| <div class="contents local topic" id="contents"> |
| <ul class="simple"> |
| <li><p><a class="reference internal" href="#ecc" id="id3">ECC</a></p> |
| <ul> |
| <li><p><a class="reference internal" href="#root-ca" id="id4">ROOT CA</a></p></li> |
| <li><p><a class="reference internal" href="#intermediate-ca" id="id5">Intermediate CA</a></p></li> |
| </ul> |
| </li> |
| <li><p><a class="reference internal" href="#rsa" id="id6">RSA</a></p> |
| <ul> |
| <li><p><a class="reference internal" href="#id1" id="id7">ROOT CA</a></p></li> |
| <li><p><a class="reference internal" href="#id2" id="id8">Intermediate CA</a></p></li> |
| </ul> |
| </li> |
| </ul> |
| </div> |
| <p>The directory <code class="docutils literal notranslate"><span class="pre">demos/Certificate_Chains/ROOT</span></code> contains RootCA and |
| Intermediate Certificates used in various configurations of SE050. |
| More information on these certificates can be found in the application note on SE050 configurations: |
| <a class="reference external" href="https://www.nxp.com/docs/en/application-note/AN12436.pdf">AN12436</a></p> |
| <div class="section" id="ecc"> |
| <h2><span class="section-number">11.8.1.1.1. </span>ECC<a class="headerlink" href="#ecc" title="Permalink to this headline">¶</a></h2> |
| <p>This directory contains the ECC chain of trust for cloud on-boarding.</p> |
| <div class="section" id="root-ca"> |
| <h3><span class="section-number">11.8.1.1.1.1. </span>ROOT CA<a class="headerlink" href="#root-ca" title="Permalink to this headline">¶</a></h3> |
| <p>The file <code class="docutils literal notranslate"><span class="pre">IOT_NXP-01-CERT_IOT_CA_KEY-IoTRootCAvE305-01-20190320162439-EC_SEC_P384R1-4B7E5A.crt</span></code> contains ROOT CA.</p> |
| <div class="highlight-text notranslate"><div class="highlight"><pre><span></span>-----BEGIN CERTIFICATE----- |
| MIIB1jCCAVmgAwIBAgIBATAMBggqhkjOPQQDAwUAMEExFzAVBgNVBAsMDlBsdWcg |
| YW5kIFRydXN0MQwwCgYDVQQKDANOWFAxGDAWBgNVBAMMD05YUCBSb290Q0F2RTMw |
| NTAeFw0xOTAzMjAxNTI2MDRaFw0zNzAzMjAxNTI2MDRaMEExFzAVBgNVBAsMDlBs |
| dWcgYW5kIFRydXN0MQwwCgYDVQQKDANOWFAxGDAWBgNVBAMMD05YUCBSb290Q0F2 |
| RTMwNTB2MBAGByqGSM49AgEGBSuBBAAiA2IABNRrkWrw7iwM3oTw1Ay8I1yzOF+g |
| OTNFzqfn/93N1xcK8kNEA8wNuuVjzsDXKHx7O1jrGZfy7YLjKYTwZR5wURXrE7lp |
| PIwwdWE3OokTmhiMiFXnzSgSHCgtb+VF6nv76aMjMCEwDwYDVR0TAQH/BAUwAwEB |
| /zAOBgNVHQ8BAf8EBAMCAQYwDAYIKoZIzj0EAwMFAANpADBmAjEA7cCFz6PcBHKi |
| HRtbE3qi0Lj9iqxe8/2w8XrLclAYhpMzZOQC05j3ZmgJ22B1bLk3AjEAhVnhuawO |
| Zh1Jqwf7zySh/rNJezFhGTyHAjQ9tTfY9eZAdc25feEN4j/Ad+7TF1Rg |
| -----END CERTIFICATE----- |
| </pre></div> |
| </div> |
| </div> |
| <div class="section" id="intermediate-ca"> |
| <h3><span class="section-number">11.8.1.1.1.2. </span>Intermediate CA<a class="headerlink" href="#intermediate-ca" title="Permalink to this headline">¶</a></h3> |
| <p>The file <code class="docutils literal notranslate"><span class="pre">IOT_NXP-01-CERT_IOT_4LAYER_CA_KEY-IoTInt4LAYERCAvE205-01-20190320164314-EC_SEC_P256R1-14DBBE.crt</span></code> |
| contains the Intermediate CA.</p> |
| <div class="highlight-text notranslate"><div class="highlight"><pre><span></span>-----BEGIN CERTIFICATE----- |
| MIIByjCCAU6gAwIBAgIBBDAMBggqhkjOPQQDAgUAMEExFzAVBgNVBAsMDlBsdWcg |
| YW5kIFRydXN0MQwwCgYDVQQKDANOWFAxGDAWBgNVBAMMD05YUCBSb290Q0F2RTMw |
| NTAeFw0xOTAzMjAxNTQyNTRaFw0zNDAzMjAxNTQyNTRaMFAxFzAVBgNVBAsMDlBs |
| dWcgYW5kIFRydXN0MQwwCgYDVQQKDANOWFAxJzAlBgNVBAMMHk5YUCBJbnRlcm1l |
| ZGlhdGUtNExheWVyQ0F2RTIwNTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABO+d |
| HK3Oa4FnkKN9/1JQpR2KarpxmwNRaEG6Zb+kzTwnXRw4Cvknd8IAcjXHqb93VfX5 |
| rO+4MjX/gzqYagJByWejJjAkMBIGA1UdEwEB/wQIMAYBAf8CAQEwDgYDVR0PAQH/ |
| BAQDAgEGMAwGCCqGSM49BAMCBQADaAAwZQIxAPvXuvlW+zkSBbz0NyyzpgFP1rCj |
| IZOHpfZhaERw/DEj+4aAESa5vgtiR3CspIP5pAIwRsD1Z9fdBnPSlaVMmNAXjAlZ |
| FPhbV7A0OXydSYhI8M5uTENrdqzvsYYr2jfqIEcp |
| -----END CERTIFICATE----- |
| </pre></div> |
| </div> |
| </div> |
| </div> |
| <div class="section" id="rsa"> |
| <h2><span class="section-number">11.8.1.1.2. </span>RSA<a class="headerlink" href="#rsa" title="Permalink to this headline">¶</a></h2> |
| <p>This directory contains the RSA chain of trust for cloud on-boarding.</p> |
| <div class="section" id="id1"> |
| <h3><span class="section-number">11.8.1.1.2.1. </span>ROOT CA<a class="headerlink" href="#id1" title="Permalink to this headline">¶</a></h3> |
| <p>The file <code class="docutils literal notranslate"><span class="pre">IOT_NXP-01-CERT_IOT_CA_KEY-IoTRootCAvR406-01-20190425163255-RSA4096-BAB872.crt</span></code> contains the ROOT CA.</p> |
| <div class="highlight-text notranslate"><div class="highlight"><pre><span></span>-----BEGIN CERTIFICATE----- |
| MIIFIDCCAwigAwIBAgIBATANBgkqhkiG9w0BAQwFADBBMRcwFQYDVQQLDA5QbHVn |
| IGFuZCBUcnVzdDEMMAoGA1UECgwDTlhQMRgwFgYDVQQDDA9OWFAgUm9vdENBdlI0 |
| MDYwHhcNMTkwNDI1MTQzMzAzWhcNMzcwNDI1MTQzMzAzWjBBMRcwFQYDVQQLDA5Q |
| bHVnIGFuZCBUcnVzdDEMMAoGA1UECgwDTlhQMRgwFgYDVQQDDA9OWFAgUm9vdENB |
| dlI0MDYwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCwRBRveWxzoVln |
| bFOWxhjFmX6hqPBB5o7pOVVGqvvdkSvcdZh7+hozTPzI7d5eCJWtiIYZ4xUXxiP8 |
| MttIsssT4yrZjpSy2qTWbn5T/lB7a2e/A5JTGUcX05/uFATfZTs2pcoUydB68PnB |
| LVsS8i1atpxN4Tiy5NPchWM2mL7YwoKJxCNgZFs5WYxvm4OSOhMy7rAF010ujy1k |
| 6L/XydcSv48G6ZlpCYH8Tn5cV7UEuNWpgq+0Wgpz6xz/ZHyfTxKhuBtj4eh3GyDv |
| Fmt1L1hJT/k17+Q19rW3U7OBV5w8ehuLoRNsNzG2zc9rFHlK9pVX9DRZQKI5XNoh |
| 1he7oSxJFkjsLn27w0fOHraOaefrYuOrbKDA/X+cJzyKOvxWNhVyFRryn2iO58Wa |
| HuBqja7fnubexMP1Mr2b/hZVllSPmFVDk+Bl7VXpvC/tYXEqlSK1Tj/1gZ5tpmpm |
| SBBqcHsp0YQEkNLAnG+K9sFOKamf1Yt0IO/iyoYPUQ5IV644pOiztO2myFrT04+K |
| Pwi+XwoRBVSK/WrI5vy16HzAJqPP1Nb6QKdOe1Q+NwNMyUySFzHavd3L4XaiNP4Z |
| iPgjSG/me8ozcPTFR29eibPl7p9YlhocmU4g2UURStVL0cpdOrc36BEv6DQ6RN4H |
| 7N9VM9AIP+lO47argR+ciYzkY+Xd+wIDAQABoyMwITAPBgNVHRMBAf8EBTADAQH/ |
| MA4GA1UdDwEB/wQEAwIBBjANBgkqhkiG9w0BAQwFAAOCAgEAQsNB0/011ELP5rHN |
| rk9+sTh+Mr6Ye7geTYT1QRCCpLuyUuyc3O5ldSOKP3RorsNYD/aCJGhHDvh0ofyj |
| ykx5lre2+b2foSVg+ZjQQf3qju+7bqh3tW1dD2bI49+yRoCIplJZQ8V91ReH+33k |
| TzYNv/tvzYxnF8AF7wJ93zyafXJvIQ6AUnVoDdgtN203M853jxavjZHSVjTQXaR0 |
| LwYCcNiE+bE2Z4owjerG3QAVG/ju8Xz+bhOFRy/+M1iblF8KGZRzSA0E0ijMhhfZ |
| ZIP6eXjWWaoL+9iqD8F8/IXxW2zH37IzOTB6s2xcSFvjGbzVJ7CHy8/c4OQEoZpi |
| gujcPF5axOpI2RSnUPX+YFyu3od5URS3ybo9aT7b1CLURkjbhcGHCo04NL3h6Zg1 |
| G2ktasOCL3moypWY0EYNwrHKyccVY3VVR1H89P03qQf5uUAADFcrpZ8lB7yPylmt |
| 4qcZfbACzUt3O0UzUI1VDyHL6NcTw/1Da26aGKZMseHan6xESDpiHMC5efv4Xd7U |
| k+bVedNwTKooDZn1K5WKTiZ3nUcSRAhdmiaQrAb6lKYEcDxRK5VPtr/MU6cL2PKZ |
| m9oZ0hnfB5EbYJH4tWAite7j5kMrtOltT+woeWP/dSmDg31ZCBmc3Sx0NaUl2jQZ |
| 2vnNPomcaE8BkvyrhEPkSw/VXTw= |
| -----END CERTIFICATE----- |
| </pre></div> |
| </div> |
| </div> |
| <div class="section" id="id2"> |
| <h3><span class="section-number">11.8.1.1.2.2. </span>Intermediate CA<a class="headerlink" href="#id2" title="Permalink to this headline">¶</a></h3> |
| <p>The file |
| <code class="docutils literal notranslate"><span class="pre">IOT_NXP-01-CERT_IOT_4LAYER_CA_KEY-IoTInt4LayerCAvR406-01-20190425163534-RSA4096-540F19.crt</span></code> |
| contains the intermediate CA.</p> |
| <div class="highlight-text notranslate"><div class="highlight"><pre><span></span>-----BEGIN CERTIFICATE----- |
| MIIFMjCCAxqgAwIBAgIBAjANBgkqhkiG9w0BAQwFADBBMRcwFQYDVQQLDA5QbHVn |
| IGFuZCBUcnVzdDEMMAoGA1UECgwDTlhQMRgwFgYDVQQDDA9OWFAgUm9vdENBdlI0 |
| MDYwHhcNMTkwNDI1MTQzNTA5WhcNMzQwNDI1MTQzNTA5WjBQMRcwFQYDVQQLDA5Q |
| bHVnIGFuZCBUcnVzdDEMMAoGA1UECgwDTlhQMScwJQYDVQQDDB5OWFAgSW50ZXJt |
| ZWRpYXRlLTRMYXllckNBdlI0MDYwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK |
| AoICAQCyji2V12sVG7PQNJ8uzYSVA+cSCDvP/pCqvcA8ulaVuTfjLQVkRejPeRUO |
| 549JKWvE/3l8mW1mUApFcKOq1ud6/W9iFgKHDvPwKkOHlmiIdHiOEHCu2Qr7EnKH |
| jMD5M/dhqwZdRxlojiMnEw7pt4x2gdndZQQFO5eHIBb/SIgeeUVreYnjRTfTRqqV |
| oZfYPV09IYx4Lm1lFcCgODpn55TSIYvE8fGqGTM+J3+Q0g47N6Uve3SGdjL7aese |
| wGb6EPqGUqaSGLOgKy/L0KlgnVZXOeidFJjOe5QsKUQgWbCExcLObR2a3XZbIwXq |
| dq+ED1ovhrRDHH5VDRgK4+7WCFy6wQD9PPIy8WioXsCV2XCSixAM6XhWUYkLignp |
| 30Yy5tzKhbCpyxe84ZM3sZG/PAojVAbwpVpjm/px3N8jdQ/hE1eVgaoyTX0Pn9We |
| tXRQkUEBluOm3Czaw1YN1E5LWpP8hYhWTMPVnfxlZ/R3rdswiWaA2+knWJCXkdsk |
| Kle8h4xNB0e0ZAzulEXh9JROsOqZUuh0+sGwPsw13p4KqauBzSG77tos1e4xp9AI |
| 9P7JcnRsEeNjgTvbjBxISlQdHW3FCnud7hM/OoTbGojwB3CHPIoIJmWCW7ci6beD |
| DUwOo2CfjZ+FlQErar2XarQrPLdSFTd+lJJqUy+tiNoWPJafYQIDAQABoyYwJDAS |
| BgNVHRMBAf8ECDAGAQH/AgEBMA4GA1UdDwEB/wQEAwIBBjANBgkqhkiG9w0BAQwF |
| AAOCAgEAW0JtZaJCEbm4+DmYa32WNvqjjxgdmRHjkJtfv+wkt0Kz71MHG0qSQBHH |
| UkVOkBFm/wjF+lH+/7X9ZdiFsO3b9P2JXHg1PXgU9NvtuYZBAsiy0VRxVSukp+JH |
| 7biOFNx5nwerYv9C1JG2VRPr+JzDUP1/QV9XCFtQVnpyfm/pETLghOwaNq4Yjzg+ |
| MxLw4sWsJL5DZrG2/jViHhogoCnXz1rFVWFI1BBvEbKnthYUxqL+Xc4vWCYLvMHc |
| LbZMGef05HrcPWtAS13y8qpat5MGRXDjgFqGUyoaPoxRya4dOexjw369aV/YAIsx |
| wgtAiWrvL4UPOUGopCMac4GEbpPA60XHmSVXyR+CCKyLwLD7rRR8Vpk5cUM2jvxI |
| 5NMP17Wa+QD4jp8sWsSebI83+qL/0TdWgRbD/FW2igrR0ird8wgQcIhtCrJCdYMT |
| MjRtJc4m/iJ+OH2KaryxQi8oEkB3onsIZXvSNgXvTp4SkLw9pPheEwSKVvbo1DoF |
| QB4ek6ynjWGgoaHl5tx2i+tRH+mEP7+Ccw32HdX+xo8BYvMaBXJI8M5rem7k4PsQ |
| tLNjn9CN0FPT8j2ksk8jMi4s/c9EHY5NYNgjTG6MQ3eSS1QaoVYPi4NCDe2KWP2k |
| ooGZMUlICfXbP86zQz5xBJvd/+Rmdn+mvLoabzmFVPS9E1yH6fE= |
| -----END CERTIFICATE----- |
| </pre></div> |
| </div> |
| <div class="admonition note"> |
| <p class="admonition-title">Note</p> |
| <p>The certificates shown here were last Updated on June 18, 2019 in this page/document.</p> |
| </div> |
| </div> |
| </div> |
| </div> |
| |
| |
| </div> |
| |
| </div> |
| </div> |
| <footer class="footer"> |
| <div class="container"> |
| <p class="pull-right"> |
| <a href="#">Back to top</a> |
| |
| </p> |
| <p> |
| © Copyright 2018-2020, NXP.<br/> |
| Created using <a href="http://sphinx-doc.org/">Sphinx</a> 2.4.1.<br/> |
| </p> |
| </div> |
| </footer> |
| </body> |
| </html> |