Secure Software Install Device Tools Overview

The Secure Software Install Device Tools component comprises of the following tools:

  • Secure Software Install Certificate Store tool (swicertstoretool) - The swicertstoretool is used to create the swicertstore.dat file that contains certificates and their capabilities. SWI uses Swicertstore.dat file to verify the SIS files being installed and do a capability check.

  • Console based SWI tool - Is a tool that allows software to be installed, uninstalled or upgraded on the device using an EShell interface.

Key concepts and terms

Distinguished Encoding Rules (DER)

DER is a method for encoding any ASN.1 structure, such as an X.509 certificate, as binary data.

Distinguished Encoding Rules (PEM )

PEM is a method for encoding a data object, such as an X.509 certificate, to be digitally signed or to have its signature verified. PEM is just base64-encoded DER, plus a header and footer.

Required background

Before you start, you must be familiar with the following:

Typical uses

Creating swicertstore.dat file

The swicertstore tool creates the swicertstore.dat file. This file contains certificates and their capabilities which SWI uses to validate the SIS files being installed on the device. For more information on creating swicertstore.dat file, see Creating swicertstore.dat file.

Using console-based SWI

Native software can be installed on the device using a console-based tool. This tool can be used from EShell to install, uninstall or upgrade native software on the device. For more information on using this tool, see Using Console-based SWI.