2.19. Release v02.15.00

Internal Milestone - Not published to NXP Website

2.19.1. Build system changes

  • Changed FIPS Selection. Now use PTMW_FIPS -DSSS_HAVE_FIPS=ON is no longer valid. Use -DFIPS=SE050 to enable FIPS mode or -DFIPS=None to disable FIPS mode.

2.19.2. APIs & enum/types Changes

  • Added support for extended applet features to be used with Se05x_API_SetAppletFeatures().

  • Updated Se05x_API_SetAppletFeatures() and sss_se05x_set_feature() signature. Defined new structure with applet features and extended features.

  • Added kAlgorithm_SSS_ECDAA in sss_algorithm_t for Barreto Naehrig curves.

  • Refactored sss_algorithm_t, added common algorithm kAlgorithm_SSS_RSAES_PKCS1_V1_5, removed SHA dependency.

  • Added APIs Se05x_API_WriteSymmKey_with_version(), Se05x_API_WriteECKey_with_version(), Se05x_API_WriteRSAKey_with_version() and Se05x_API_WriteBinary_with_version() to create key with version information.

  • Added API Se05x_API_TLSCalculateRsaPreMasterSecret() to support RSA Pre-master secret with client version.

  • Updated PCR functionality to not pass hash value from outside. Application should pass an input which will be hashed inside the applet.

2.19.3. Functional Changes

  • Enable usage of usleep for clang.

  • Moved PSA driver initialization to secure application on LPC55S.

  • Added support for flash storage of PSA keystore on LPC55S. See Managing KeyIDs.

  • Added support for Platform SCP03 using PUF on LPC55S.

2.19.4. New feature support

  • SEMS Lite added for applet install, upgrade, delete etc.

  • Added support for AES GCM on AKM

2.19.5. Documentation Changes

2.19.6. Examples / DEMO updates

  • Updated example Section 5.7.18 Configuring Applet Features to demonstrate use of extended features.

  • Added attestation examples. Section 5.2.1.9 and Section 5.2.1.10

  • Added example to demonstrate kAlgorithm_SSS_ECDAA signing operation.

  • Added example for secure pairing on LPC55S

  • Added examples for SEMS Lite

  • Added examples for Perso scripts to demonstrate how to personalize the applet.

2.19.7. Other Miscellaneous Changes

  • Files simw-top/hostlib/hostLib/platform/imx/i2c_a7.c and simw-top/hostlib/hostLib/platform/rsp/i2c_a7.c have been merged and the resulting I2C wrapper file is now located at simw-top/hostlib/hostLib/platform/linux/i2c_a7.c

  • Memory leak fixes in T1oI2C layer

  • Buffer size fixes, support for CKA_LABEL, CKA_CERTIFICATE_TYPE and CKA_ALWAYS_AUTHENTICATE in PKCS#11.