| commit | e932738cbda615d21e72a07c4fe3177048ad6f71 | [log] [tgz] |
|---|---|---|
| author | Michael Ryleev <gmar@google.com> | Wed Dec 20 15:19:02 2017 -0800 |
| committer | Michael Ryleev <gmar@google.com> | Thu Jan 11 15:41:26 2018 -0800 |
| tree | 629ed67bc828363deb14331a407d7be761e07f1a | |
| parent | 77d6c9db32f02765bded7cc3664fe69397cc788c [diff] |
[app][hwcrypto] Switch to use different kdfv1 root key The previous implementation used RPMB authentication key as a root for kdfv1 key derivation function. Such key is shared with external hardware and it is unclear how well this secret is kept by it. It is better to use secret that is tied to device itself which is introduced by this CL. Change-Id: I61b408da6880fac0d3013c5beac8e0ed9d53a0ab