diff --git a/source/android/Application_Notes_Android_Secure_Build.rst b/source/android/Application_Notes_Android_Secure_Build.rst
index bd3855803..7b6a2b84c 100644
--- a/source/android/Application_Notes_Android_Secure_Build.rst
+++ b/source/android/Application_Notes_Android_Secure_Build.rst
@@ -51,8 +51,8 @@ Build Secure Bootloaders
       $ cd ${YOUR_PATH}/ti-bootloader-aosp/build
       $ ./secure.sh generate_ta_keys
       $ ls -1 .keys/
-      ta.key
-      ta_pub.key
+      ta.pem
+      ta_pub.pem
 
 - Generate AVB public/private keys:
 
@@ -66,6 +66,19 @@ Build Secure Bootloaders
 
 That will generate ``avb.key`` and  ``avb_pub.key`` under ``build/.keys``.
 
+.. note::
+
+   **Dependency on avbtool**:
+
+   The ``./secure.sh generate_avb_keys`` command has a dependency on the ``avbtool`` binary.
+   The tool is present in the kernel repository at ``prebuilts/kernel-build-tools/linux-x86/bin/avbtool``.
+   If the command fails with the message: ``avbtool: command not found``, update your ``PATH``
+   environment variable to include the avbtool path:
+
+   .. code-block:: console
+
+      $ export PATH=$PATH:${YOUR_PATH}/ti-kernel-aosp/prebuilts/kernel-build-tools/linux-x86/bin
+
 The bootloaders scripts will detect that ``avb_pub.key`` is present and will include it into U-Boot.
 
 .. ifconfig:: CONFIG_part_variant in ('AM62X')
@@ -94,9 +107,9 @@ The bootloaders scripts will detect that ``avb_pub.key`` is present and will inc
    +---------------------+-----------------------------------------------------------------------------+
    | ``avb_pub.key``     | (Optional) Public key used by U-Boot to verify Android images               |
    +---------------------+-----------------------------------------------------------------------------+
-   | ``ta.key``          | (Optional) Private key used to sign Trusted Application (OP-TEE)            |
+   | ``ta.pem``          | (Optional) Private key used to sign Trusted Application (OP-TEE)            |
    +---------------------+-----------------------------------------------------------------------------+
-   | ``ta_pub.key``      | (Optional) Public key used to sign Trusted Application (OP-TEE)             |
+   | ``ta_pub.pem``      | (Optional) Public key used to sign Trusted Application (OP-TEE)             |
    +---------------------+-----------------------------------------------------------------------------+