# Certificate and keys

Source: [https://docs.qualcomm.com/doc/80-63441-4/topic/AMM-certs-n-keys.html](https://docs.qualcomm.com/doc/80-63441-4/topic/AMM-certs-n-keys.html)

Qualcomm provides following certificates for the security and authentication purposes:
- The Root Certificates on the device for certificate authority (CA) verification: Ensure
          that these certificates are accessible to the HTTPS client on the MCU.
- An Aware server key: AMM client uses it to encrypt payload when transmitted to Qualcomm
          Aware Cloud. It is provisioned as a mandatory field through the `AT$QCFG`
          command. For more information, (see [AT$QCFG](https://docs.qualcomm.com/doc/80-63441-4/topic/AT-QCFG.html)).
- An API key: It is used for authentication of the customer of the LaaS REST API calls.
          See [LaaS REST API](https://docs.qualcomm.com/doc/80-63441-4/topic/LaaS-REST-API.html) for more information on LaaS REST API. It must be
          included in the REST API request independent of whether the request is initiated form the
          customer MCU or the Customer Cloud.

To request any of the three items, submit a case to QTI at [https://mysupport.qualcomm.com/aware/s/](https://mysupport.qualcomm.com/aware/s/). The item is delivered through Salesforce.

**Parent Topic:** [Provisioning](https://docs.qualcomm.com/doc/80-63441-4/topic/Provisioning.html)

Last Published: Jul 16, 2025

[Previous Topic
Aware mass market identifiers](https://docs.qualcomm.com/bundle/publicresource/80-63441-4/topics/AMM-ids.md) [Next Topic
Aware mass market client provisioning](https://docs.qualcomm.com/bundle/publicresource/80-63441-4/topics/AMM-client-provisioning.md)