Add support for other secure element chips

NebraLtd / helium-miner-software

Software for Nebra (and third party) Helium Miners

https://nebra.io/hnt

MIT License

93 stars 48 forks source link

Add support for other secure element chips #92

Open shawaj opened 3 years ago

shawaj commented 3 years ago

In order to provide more manufacturing flexibility, it would be good if we can support now secure element chips.

Specifically:

[ ] Runjet rjgt102wdp8
[ ] Maxim Integrated DS28C36Q+T / DS28C36BQ+T
[ ] TFLXTLS ATECC608B
[ ] TPM2.0 chips
[ ] ARM TrustZone

Will also need updates to https://github.com/NebraLtd/hm-miner and https://github.com/NebraLtd/hm-diag and https://github.com/NebraLtd/hm-config and https://github.com/NebraLtd/hm-gwmfr

shawaj commented 3 years ago

This is helped by https://github.com/helium/miner/pull/769

shawaj commented 3 years ago

TPM support has a PR in miner and gateway_mfr helium repos.

More info at https://github.com/helium/gateway_mfr/issues/5

shawaj commented 2 years ago

FYI @marvinmarnold

shawaj commented 2 years ago

Other option... Infineon-OPTIGA TRUST M SLS32AIA-DataSheet-v03_00-EN.pdf

vpetersson commented 2 years ago

IMHO, sticking to TPM would be better as it is less of a lock-in. We already got the Secure pHAT that we could re-purpose for this and fit onto a board.

shawaj commented 2 years ago

@vpetersson that and TrustZone yes.

FYI here is a RockPi 4b based hotspot using TrustZone https://github.com/dewi-alliance/hotspot-manufacturers/pull/254

Uses OP-TEE https://optee.readthedocs.io/en/latest/general/index.html

We should investigate further on our side