[TF-M] Any existing efforts on enabling X.509 certificate support inside TF-M

Hi everyone,

I’m wondering if there is any existing effort on enabling X.509 CSR generation and certificate verification inside TF-M? Our project has some custom secure partitions which need to generate the CSR and verify the issued certificates by themselves. The current TF-M implementation hasn’t added X.509’s support. So, I’m wondering if any open source project already does that which we can leverage?

Regards, Jun Li Intel Corporation, CA