I'm running into difficulty determining the correct slot & key config values to support an encrypted read on an ECDH shared secret output. Setup:
- Private key is in Slot 2, say
- ECDH operation is setup to store the shared secret in slot 3
- I want to encrypt the read of the shared secret using a key in slot 4.
Is it OK for me to set the write configuration for slot 3 to 'never'? Should I set the KeyConfig type for Slot 3 to "not ECC", and does it need to be ECDH enabled?