1.3.1 Example Customer Key Encryption for SAMA5D3 Devices

Old command line (Secure SAM-BA Cipher 3.x)

secure-sam-ba-cipher.py customer-key -d sama5d3x -l license.txt -k cust.key -o customer-key.cip90000

New command line (Secure SAM-BA Cipher 3.5)

secure-sam-ba-cipher.py customer-key -d sama5d3x -l license.txt -k cust.key -pad 0123456789abcdef -o customer-key.cip -pk license_private.pem -pp pass:license_passphrase

Parameters:

-l, --license LICENSE (required)

Name of the file that contains the license.

-d, --device DEVICE (required)

Name of the device family.

-k, --key-file KEY_FILE (required)

Name of the file that contains the customer key.

-pad, --cust-key-padding KEY_PADDING (optional)

8-byte value used for customer key padding in hexadecimal format (only for SAMA5D3 devices). If omitted, random data will be used.

-o, --output-file OUTPUT_FILE (required)

Name of the file that will contain the ciphered customer key message.

-pk, --priv-key-file PRIVATE_KEY_FILE (required)

Name of the file that contains the license private key. This private key must be the one generated by the request-license command.

-pp, --priv-key-pass PRIVATE_KEY_PASSWORD (optional)

Password used to decrypt the license private key. The syntax is "pass:XXX" for password XXX, or "file:YYY" to read password from file YYY. This parameter is mandatory if the license private key is ciphered.