Merge "Remove reference to factory reset of K" into main am: c523f76846 am: 938d7e68e0

Original change: https://android-review.googlesource.com/c/platform/hardware/interfaces/+/2502335 Change-Id: I66527c4afa7d69f76131caf1d446a59b2109580d Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
2024-03-29 03:39:09 +00:00 · 2024-03-29 03:39:09 +00:00 · d1c156be22
commit d1c156be22
parent efb21cb338 938d7e68e0
1 changed files with 3 additions and 8 deletions
--- a/security/sharedsecret/aidl/android/hardware/security/sharedsecret/ISharedSecret.aidl
+++ b/security/sharedsecret/aidl/android/hardware/security/sharedsecret/ISharedSecret.aidl
@ -81,14 +81,9 @@ interface ISharedSecret {
     *           defined in the standard.  The counter is prefixed and length L appended, as shown
     *           in the construction on page 12 of the standard.  The label string is UTF-8 encoded.
     *
-     *     ``K'' is a pre-established shared secret, set up during factory reset.  The mechanism for
-     *           establishing this shared secret is implementation-defined.Any method of securely
-     *           establishing K that ensures that an attacker cannot obtain or derive its value is
-     *           acceptable.
-     *
-     *           CRITICAL SECURITY REQUIREMENT: All keys created by a IKeymintDevice instance must
-     *           be cryptographically bound to the value of K, such that establishing a new K
-     *           permanently destroys them.
+     *     ``K'' is a pre-established shared secret.  The mechanism for establishing this shared
+     *           secret is implementation-defined.  Any method of securely establishing K that
+     *           ensures that an attacker cannot obtain or derive its value is acceptable.
     *
     *     ``||'' represents concatenation.
     *