Download
Share
Print this page
Renesas R5F565NEHDFC Application Note
  1. Manuals
  2. Brands
  3. Renesas Manuals
  4. Microcontrollers
  5. R5F565NEHDFC
  6. Application note
Renesas R5F565NEHDFC Application Note

Renesas R5F565NEHDFC Application Note

Getting started with embedded trust and the rx65x
Hide thumbs

Advertisement

Quick Links

Download this manual
Introduction
This application note describes the use of the Embedded Trust and C-Trust security development environments
with the Renesas RSK+RX65N-2MB Starter Kit. The Renesas RSK series
E2 Lite debugging emulator. The RSK also
ease the development of custom security designs.
Target Devices
This application note refers to the following secure microcontroller :
➢ Renesas Electronics R5F565NEHDFC microcontrollers
Related Documents
➢ Renesas RSK+RX65N-2MB User's Manual (R20UT3888EG0200 Rev 2.00 Dec 2017)
➢ E1/E20/E2 Emulator, E2 Emulator Lite (R20UT0399EJ1200 Rev.12.00 Nov 2018)
➢ Embedded Trust User Guide (available from Secure Thingz & IAR Systems websites)
STZAN0114EN0100
Getting Started with Embedded Trust and the RX65x
offers additional peripherals to extend the features of the board and
Application Note
STZAN0114EN0100
Revision 1.00
includes an LCD display module and
April 2019
1

Advertisement

loading
Need help?

Need help?

Do you have a question about the R5F565NEHDFC and is the answer not in the manual?

Questions and answers

Related Manuals for Renesas R5F565NEHDFC

Summary of Contents for Renesas R5F565NEHDFC

  • Page 1 Getting Started with Embedded Trust and the RX65x Introduction This application note describes the use of the Embedded Trust and C-Trust security development environments with the Renesas RSK+RX65N-2MB Starter Kit. The Renesas RSK series includes an LCD display module and E2 Lite debugging emulator. The RSK also offers additional peripherals to extend the features of the board and ease the development of custom security designs.

  • Page 2: Kit Overview

    1. Kit Overview The Renesas RSK+RX65N-2MB Starter Kit is a hardware platform for the evaluation of the Renesas RX65N device. The Renesas RSK+RX65N-2MB Starter Kit part number is as follows: • YRTK50565N200010BE (Renesas RSK+RX65N-2MB Kit CS+ & E2Lite-Encrypted) The board offers a set of features that enables the user to get started with the microcontroller peripherals immediately and to obtain an understanding of how to integrate the device in their required design.

  • Page 3: Getting Started

    2. Getting Started Download and install the following : ➢ IAR Systems Embedded Workbench for RX provided by IAR Systems ➢ Embedded Trust security development environment provided by Secure Thingz ➢ C-Trust extension to IAR Embedded Workbench provided by IAR Systems Refer to the Installation and Licensing Quick Reference Guide available from the IAR Systems website to determine PC system requirements.
  • Page 4 Figure 4: Embedded Trust with Getting Started project loaded Click on the Project tab and select “Create New Project” in the dropdown menu. The dialog box shown in Figure 5 will be displayed. Click on the “Tool chain” dropdown and select “RX”. We wish to add security to the Getting Started project we have just loaded so click on Secure Boot Manager in the “Create New Project”...
  • Page 5 Figure 6: IDE with Secure Boot Manager project loaded and active Please read the Readme.txt file that is displayed in the IDE. This file includes important configuration information for projects that are to have security added i.e. integrated with a Secure Boot Manager. Please note that "Erase flash ROM before download"...
  • Page 6 The menu for Options for node “SBM” will open. Select the “General Options” category and click on the “Target” tab. Select the Device type as “R5F565NE”. Select the “Debugger” category and select the “E2 Lite” Driver. Select the “Security” category and click the Enable check box. The Embedded Trust dialog box shown in Figure 8 should be the resultant display.
  • Page 7 2.2 Configuring the Security Context In the Options for node “SBM” -> Embedded Trust dialog box (see Figure 8) click “New”. The dialog box for “Create New Security Context” will open. Populate the values, in free text, with the required configuration. Note that the Security Configuration information is the information that will be used to generate the Device Certificate for the project.
  • Page 8 2.2.1 Number of certificates This option allows the user to select the number of digital certificates that are to be implemented in the chain of trust (Public Key Infrastructure (PKI)) for the application. Figure 11 is an example of a chain of trust with 3 levels. A maximum of 8 levels are supported by the Secure Boot Manager, however, due to the requirement to store the certificates in secure memory, there is a limitation on the number of certificates that can be implemented in a usable system.
  • Page 9 Figure 12: Secure Boot Manager Settings dialog box Click “Create” to allow Embedded Trust to create the Security Context. A dialog box will open to confirm the use of the profile that has just been created, click “Yes”. The dialog box shown in Figure 13 is an example of the final Security Context created showing the newly created security context profile (in this example My Security Context_profile-default).
  • Page 10 2.3 Connecting the Renesas RSK+RX65N-2MB Starter Kit Figure 14 shows the connections that are required between the RSK+RX65N-2MB Starter Kit CPU board, E2 Lite debugger and the host PC. It is recommended that the user consult the RSK+RX65N-2MB Starter Kit Quick Start guide for more detailed information concerning the operation of the kit.
  • Page 11 2.3.1 E2 Lite Debugger The RSK+RX65N-2MB Starter Kit contains the Renesas E2 Lite debugger (see Figure 16). For information about debugging and programming features refer to E1/E20/E2 Emulator, E2 Emulator Lite User’s Manual (r20ut0399ej1200_e1e20e2e2lite_rx.pdf), which describes in detail all the E2 Lite features.
  • Page 12 With the debugger configured correctly we will now provision the RX65N on the RSK+RX65N-2MB Starter Kit. Click on the Security tab and select “Provision” (see Figure 19). Figure 19: Provisioning the RX65N Embedded Trust will now build the Secure Boot Manager project. Once built, the provisioning process will begin. During the process the device serial number will be read from the RX65N that is fitted to the RSK+RX65N-2MB Starter Kit.
  • Page 13 2.5 Master the User Application The focus must now be directed towards the GettingStarted application. Please click the GettingStarted tab at the bottom of the workspace window on the left of the IDE. Right-click on the GettingStarted filename and select “Options…” in the dropdown menu (see Figure 21) Figure 21: GettingStarted project Options The “Options for node “GettingStarted”...
  • Page 14 We are now ready to master the new software image. Click on the “Security” tab and select “Master” (see Figure 23). The GettingStarted application will be built and encrypted ready for delivery to the RSK+RX65N-2MB Starter Kit. Figure 23: Mastering the image Figure 24 shows an example build log during the mastering process.

  • Page 15: Updating The Software

    2.6 Updating the software With the software built and mastered we can now download to the RSK+RX65N-2MB Starter Kit. However, we first need to configure the E2 Lite Emulator Hardware Setup. Click on the E2/E2 Lite tab and select “Hardware Setup” as seen in Figure 25 Figure 25: Setting up the E2 Lite for Mastering Ensure that the “Erase flash ROM before download”...
  • Page 16 Figure 27: Mastering image downloaded and booted 2.7 Running the GettingStarted application In order to see the output of the application, open a terminal emulator and connect to the RSK+RX65N-2MB Starter Kit COM port, it will be named RSK USB Serial Port (COMxx). (Please note that this is realised through the USB cable connected to the Host PC - Figure 15).
  • Page 17 To verify that the RX65N has been correctly provisioned, press “C”. This will display the certificate information provisioned into the device. Figure 29 shows the output for the example entered for this application note. Figure 29: COM port output for GettingStarted application (after “C”) Please verify that the correct subject information has been provisioned into both root and device certificate.

  • Page 18: Appendix A: Rx65N Memory Map

    Appendix A: RX65N Memory Map The diagram shown in Figure A-1 shows the default memory map for the RX65N after provisioning of the device has taken place (see Section 2.4). Figure A-1: RX65N Memory Map Memory Map details The Flash is operated in Linear Mode, whereby it is considered to be a single 2MB region of memory. SBM occupies Trusted Memory blocks 8, 9, and 10.