2.2.1.1 AES Key Storage
LoRa Security is built around 128-bit AES symmetric keys. A wide variety of AES keys have been implemented to support the LoRaWAN specification in the ATECC608A-TNGLoRaWAN device. These include:
- Network and Application parent keys
- Application sessions keys
- Various types of Network and Server encryption keys
- Network and Server integrity keys
The KDF
command in AES mode should be used to generate the
necessary LoRaWAN session keys based on the AES parent keys stored in Slot 0.
Optionally, these keys can be written as clear text. These keys are still considered
secret and therefore can only be read via an encrypted read.