Hi Mahavir, Thanks for the information and the link to the eFuse API implementation where reading is disabled when key purpose is HMAC_UP. My use case involves both HMAC-SHA256 and AES-CBC encryption with the same key. Our plan is to have one pre-shared key per device which is generated during manuf...

Hello, I am currently working on generating and storing a 256-bit key in eFuse key block 0. I am using the ESP32S3. My goal is to store a key in efuse with the upstream purpose (ESP_EFUSE_KEY_PURPOSE_HMAC_UP), use it for HMAC calculation, as well as read the key from eFuses when necessary. Here is t...

Thanks for the info! I reviewed the AWS documentation a bit further and it seems that RSA is supported for AWS IoT Code Signing. [0] So when creating a signing profile and signing configuration, it is possible to choose this option. I also reviewed the esp-aws-iot port of the OTA library and it seem...

Hello, I'm currently following the examples and guides for using the AWS IoT OTA library for sending OTA updates to the ESP32-S3 [0]. One of the prerequisite steps is to generate a code signing key that AWS uses to sign OTA images [1]. The public key is stored on the device and used to verify the do...