Password and Challenge/Response authentication are secure debug modes that prevent unauthorized access to the SoC by requiring correct credentials at the start of a debug session. Once authenticated, the SoC remains unsecured until a power-on-reset or similar reset occurs.
For Password authentication, BlueBox provides a password to unlock further debug access. winIDEA uses an EVE script to automate this authentication at the start of each session.
For Challenge/Response authentication, you must register your SoC using its unique identifier (UID) and an Application Debug Key/Password (ADKP) via NXP's software tool, Volkano. This tool securely stores the registration on a PC or NXP smartcard. The SoC issues a random Challenge, and Volkano calculates the Response using the UID, ADKP, and Challenge.
After registration, winIDEA can automatically authenticate using an EVE script at the start of each debug session..
For a how-to guide, refer to Unlock secure debug on NXP S32G2/3xx, S32R45x, and S32K3