A newer version of this document is available. Customers should click here to go to the newest version.
3.3.1. Configuration Bitstream Encryption Using the Programming File Generator Graphical Interface 3.3.2. Configuration Bitstream Encryption Using the Programming File Generator Command Line Interface 3.3.3. Partially Encrypted Configuration Bitstream Generation Using the Command Line Interface 3.3.4. Partial Reconfiguration Bitstream Encryption
4.1. Using SDM Provision Firmware 4.2. Using QSPI Factory Default Helper Image on Owned Devices 4.3. Authentication Root Key Provisioning 4.4. Programming Key Cancellation ID Fuses 4.5. Canceling Root Keys 4.6. Programming Counter Fuses 4.7. Secure Data Object Service Root Key Provisioning 4.8. Security Setting Fuse Provisioning 4.9. AES Root Key Provisioning 4.10. Converting Owner Root Key, AES Root Key Certificates, and Fuse files to Jam STAPL File Formats
- 3.3.2. Configuration Bitstream Encryption Using the Programming File Generator Command Line Interface
2.2.1. Quartus Key File Assignment
You specify a signature chain in your Intel® Quartus® Prime software project to enable the authentication feature for that design.
From the Assignments menu, select Device > Device and Pin Options > Security > Quartus Key File, then browse to the signature chain .qky file you created to sign this design.
Figure 1. Enable Configuration Bitstream Setting
Alternatively, you may add the following assignment statement to your Intel® Quartus® Prime Settings file (.qsf):
set_global_assignment -name QKY_FILE design0_sign_chain.qky
To generate a .sof file from a previously compiled design, that includes this setting, from the Processing menu, select Start > Start Assembler. The new output .sof file includes the assignments to enable authentication with the provided signature chain.
Did you find the information on this page useful?