77
edits
Changes
mLine 483:
Line 483: − +
→generate_retail_keys: fix TSEC#TSEC_key_generation link
===== generate_retail_keys =====
===== generate_retail_keys =====
In order to generate retail keys, the bootloader starts by initializing TSEC and grabbing it's [[TSEC#Device_key_generation|device key]]. Using static seeds and the SBK, the keyblob injected into the BCT's [[BCT#customer_data|customer_data]] is validated and decrypted. The resulting keys will then be used to generate the master static key and the master device key.
In order to generate retail keys, the bootloader starts by initializing TSEC and grabbing it's [[TSEC#TSEC_key_generation|device key]]. Using static seeds and the SBK, the keyblob injected into the BCT's [[BCT#customer_data|customer_data]] is validated and decrypted. The resulting keys will then be used to generate the master static key and the master device key.
See the pseudocode bellow for the detailed process.
See the pseudocode bellow for the detailed process.