1. Introduction
This tutorial aims to provide an in-depth analysis of the secure boot feature on the Renesas DA1459x Bluetooth® SoCs. The bootloader of the DA1459x SoC devices support secure boot so there is no need to invoke a secondary bootloader. On top of that, the embedded flash memory contains a special area where the security keys are stored and can be protected against tampering. Two groups of product keys are supported, each consisting of up to 8 different keys with a size of 256 bits. The two groups of keys are:
Signature Keys (Asymmetric keys)
Application Keys (Symmetric keys)
The signature key area of the DA1459x SOC contains the public keys which are used by the bootROM code to authenticate and verify the validity of the signed firmware image.
The application key area may contain the keys used by the built-in hardware cryptography controller to encrypt/decrypt user-defined data.