5.1.1. DEMO List

5.1.1.1. Platforms List

KSDK

Embedded platforms like FRDM K64F, i.MX RT1060, LPC55S

KSDK-CLOUD

Embedded platforms like FRDM K64F, i.MX RT1060, LPC55S, that can connect to cloud.

LINUX

Linux based platforms/systems like iMX6, iMX8, Raspberry Pi

PC

Windows PC

ALL

KSDK, LINUX, PC

5.1.1.2. SSS APIs Examples

Demo

Description

Platforms supported

SE supported

Authentication required

Section 5.2.1.1

ECC Example Inject ECC Key and use it for sign and verify operation

ALL

SE05X (A and C), A71CH

Section 5.2.1.2

RSA Example Generate RSA key and use it for signin and verify operation

ALL

SE05X (B and C)

Section 5.2.1.3

Symmetric AES Example Inject AES key, encrypt and decrypt data with it

ALL

SE05X

Section 5.2.1.4

HKDF Example HMAC Key derivation operation based on the info and salt. Inject HMAC key into SE and derive a key using HMAC from the SE into the host keystore

ALL

SE05X, A71CH

Section 5.2.1.5

Message Digest Example Message Digest hashing operation. Calculate SHA256 over data.

ALL

SE05X, A71CH

Section 5.2.1.6

HMAC Example Inject HMAC key and calculate a HMAC

ALL

SE05X, A71CH

Section 5.2.1.7

ECDH Example Inject ECC key into SE and derive a key using ECDH from the SE into the host keystore.

ALL

SE05X, A71CH

Section 5.2.1.8

ECDAA Example Generate ECC Barreto-Naehrig key into SE and perform sign operation (ECDAA).

ALL

SE05X (A and C)

5.1.1.3. Cloud connectivity Examples

Demo

Description

Platforms supported

SE supported

Authentication required

Section 5.3.1

AWS Demo for KSDK Connect to Amazon Web Services IoT Core

KSDK-CLOUD

SE05X, A71CH

Section 5.3.2

AWS Demo for iMX Linux / RaspberryPi Connect to Amazon Web Services

LINUX

SE05X, A71CH

Section 5.3.3

GCP Demo for KSDK Connect to Google Cloud

KSDK-CLOUD

SE05X, A71CH

Section 5.3.4

GCP Demo for iMX Linux / Raspberry Pi Connect to Google Cloud

LINUX

SE05X, A71CH

Section 5.3.5

IBM Watson Demo for KSDK Connect to IBM Watson

KSDK-CLOUD

SE05X, A71CH

Section 5.3.6

IBM Watson Demo for iMX Linux / Raspberry Pi Connect to IBM Watson

LINUX

SE05X, A71CH

Section 5.3.7

Azure Demo for KSDK Connect to Microsoft Azure

KSDK-CLOUD

SE05X, A71CH

Section 5.3.8

Azure Demo for iMX Linux / Raspberry Pi Connect to Microsoft Azure

LINUX

SE05X, A71CH

Section 5.4.1

Greengrass Demo for Linux Connect as AWS Greengrass Core

Raspberry PI

SE05X

5.1.1.4. OpenSSL Engine Examples

Demo

Description

Platforms supported

SE supported

Authentication required

Section 5.4.2

OpenSSL Engine: TLS Client example for iMX/Rpi3 Setting up a TLS Link using OpenSSL Engine

LINUX

SE05X, A71CH

5.1.1.5. mbedTLS Examples

Demos regarding the mbedTLS ALT implementation. See Introduction on mbedTLS ALT Implementation

Demo

Description

Platforms supported

SE supported

Authentication required

SSL2 Client

Use extended SSL Client 2 & SSL Server 2 from mbedTLS

PC

SE05X, A71CH

DTLS Client

Use extended dtls_client & dtls_server from mbedTLS

PC

SE05X, A71CH

5.1.1.6. OPC UA Examples

Demo

Description

Platforms supported

SE supported

Authentication required

Section 5.5.1

OPC UA (Open62541) Demo OPC UA Server

PC, iMX6

SE05X

5.1.1.7. PSA / TF-M Examples

Demo

Description

Platforms supported

Authentication required

Section 5.6.1

PSA Non Secure Example PSA Secure Non-secure example

LPC55S

5.1.1.8. SE05X Specific Examples

Demo

Description

Platforms supported

SE supported

Authentication required

Section 5.7.1

SE05X Minimal example Showcase usage of SE05X low level APIs

ALL

SE05X

Section 5.7.2

SE05X Get Info example Showcase Platform details of SE05X

ALL

SE05X

Section 5.7.3

APDU Player Demo Send RAW APDUs to SE050

PC, LINUX

SE05X

None / PlatformSCP03

Section 5.7.4

Using policies for secure objects Showcase usage of policies

ALL

SE05X

Section 5.7.5

Get Certificate from the SE Read the certificate from the SE and store it on the file system.

ALL (With mbedTLS Only)

SE05X

Section 5.7.6

SE05X Rotate PlatformSCP Keys Demo Showcase Rotation of SE05X PlatformSCP03 Keys

ALL

SE05X

PlatformSCP03

Section 5.7.7

I2C Master Example Showcase usage of I2CM interface of SE050

ALL

SE05X

Section 5.7.8

SE05X WiFi KDF Example Showcase usage of PBKDF

ALL

SE05X

Section 5.7.9

SE05X Export Transient objects Export transient objects

PC, LINUX

SE05X

Section 5.7.10

SE05X Import Transient objects Import transient objects

PC, LINUX

SE05X

Section 5.7.11

Import External Object Prepare Create ImportExternlObject raw APDU

PC, LINUX

SE05X

ECKey

Section 5.7.12

SE05X Mandate SCP example

ALL

SE05X

Section 5.7.13

Read object with Attestation Demonstrate how to read object with attestation

ALL

SE05X

Section 5.7.14

SE05X Transport Lock example Show transport lock feature

PC, LINUX

SE05X

None / PlatformSCP03

Section 5.7.15

SE05X Transport UnLock example Show transport unlock feature

PC, LINUX

SE05X

None / PlatformSCP03

Section 5.7.16

SE05X Timestamp Demonstrate increment of timestamp inside SE

ALL

SE05X

Section 5.7.17

SE05X PCR example Demonstrate PCR feature as Policy

ALL

SE05X

Section 5.7.18

Configuring Applet Features Demonstrate how to configure applet features

PC, LINUX

SE05X

ECKey / ECKey-PlatformSCP03 (FEATURE ID)

Section 5.7.19

Write APDU to buffer Demonstrate how to write APDU to buffer

ALL

SE05X

Section 5.7.20

Inject Certificate into SE Example to showcase injection of certificates into SE

ALL

SE05X

Section 5.7.21

SE05X Read State example Example to Read the LockState, RestrictMode and PlatformSCPRequest of SE

ALL

SE051

Section 5.7.22

SE05X Personalization Remove RSA Key Generation Module Example to showcase to delete rsa key generation module from SE

ALL

SE051

Section 5.7.23

DEMO for Personalization of SE051 Personalization of SE051

PC, LINUX

SE051

Section 5.7.24

SE05X MultiThread demo Showcase opening multiple sessions using multiple threads

ALL (Except MSVC compiler)

SE05X

Section 5.7.25

SE05X Invoke Garbage Collection Example Invoke Garbage Collection

ALL

SE05X

Section 5.7.26

ECC Concurrent Example

ALL

SE05X

None/ UserId/ AESkey/ ECkey

Section 5.7.27

Symmetric Multi Step Concurrent Example

ALL

SE05X

None/ UserId/ AESkey/ ECkey

Section 5.7.31

FIDO ECDAA Example Demonstrates FIDO ECDAA attestation algorithm.

ALL

SE051

5.1.1.9. Examples that use OpenSSL

Demo

Description

Platforms supported

SE supported

Authentication required

Section 5.8.1

Tool to create Reference key file Native example to generate refKeys. (Only for NIST-P256 curve).

LINUX, PC

SE05X, A71CH

Section 5.8.2

Building a self-signed certificate Create self signed certificates

LINUX, PC

SE05X

5.1.1.10. NFC (DESFire) Examples

Demos that interact with DESFire card via RC663. These examples can be run from:

  • From KSDK with RC663

  • From PC with FRDM-K64F & RC663

Warning

These examples are only included in a separate MW package (including nxpnfcrdlib). Please contact your NXP FAE or sales for access

Demo

Description

Authentication required

Section 5.10.1

MIFARE DESFire EV2 : Prepare Secure Element Prepare/Provision SE050 with reference Keys.

This example does not use RC663

Section 5.10.2

MIFARE DESFire EV2 : Prepare MFDFEV2 Prepare/Provision DESFireEv2 with reference Keys.

This example does not use SE050.

ex-Ev2Auth-se05x

ex-Ev2Auth-se05x Authenticate MIFARE DESFire EV2 using SE050 & RC663

Section 5.10.5

MIFARE DESFire EV2 : Change Key MIFARE DESFire EV2 Change Key using SE050 & RC663

Section 5.10.6

MIFARE DESFire EV2 : Diversified Change Key MIFARE DESFire EV2 Diversified Change Key using SE050 & RC663

5.1.1.12. SEMS Demos

See cmake-option-Applet. You need to compile with -DSE05X_Ver=06_00 -DSE05X_Auth=None

Demo

Description

Platforms supported

SE Supported

Section 5.12.1

SEMS Lite Agent Demo (sems_lite_ex_update)

ALL

SE051

Section 5.12.2

SEMS Lite CLI APP

PC, LINUX

SE051

5.1.1.13. LPC55S-PUF Based examples

Demo

Description

Platforms supported

SE supported

Authentication required

Section 5.13.1

Key Injection to PUF Example to demonstrate inject PlatformSCP keys into PUF

LPC55S

SE05X

Section 5.13.2

Key Rotation using PUF Example to demonstrate PlatformSCP key rotation using PUF

LPC55S

SE05X

PlatformSCP03

Section 5.13.3

Secure Boot Demo Example to demonstrate Secure Binding with LPC55S and SE05X using PUF

LPC55S

SE05X

PlatformSCP03

5.1.1.14. EdgeLock 2GO Agent example

Demo

Description

Platforms supported

SE supported

Authentication required

Section 6.8

EdgeLock 2GO Agent Examples Example of usage of the EdgeLock 2GO Client

PC, iMX6, iMX8, FRDM K64F, LPC55S

SE05X

None / PlatformSCP03