Hi, what is the application exactly? Internet-connected device, other components maybe? The discussion is interesting yet quite abstract without the details.
It could be the case the data is small and more important than the code and you could encrypt partially. Add signatures, in-memory transform so that the data cannot be put back easily (when read from SRAM) and it may be sufficient for many practical purposes. Detect unauthorized hardware by CHIPID and sprinkle bad behavior. You could also have per-device image with randomized layout to add to the confusion. 3.9.2. Mixed Architecture Combinations - happy debugging![:)]( "Smile")
ESP32 has hardware-supported secure boot and flash encryption.
It could be the case the data is small and more important than the code and you could encrypt partially. Add signatures, in-memory transform so that the data cannot be put back easily (when read from SRAM) and it may be sufficient for many practical purposes. Detect unauthorized hardware by CHIPID and sprinkle bad behavior. You could also have per-device image with randomized layout to add to the confusion. 3.9.2. Mixed Architecture Combinations - happy debugging
ESP32 has hardware-supported secure boot and flash encryption.
Statistics: Posted by arkadi — Sun Dec 15, 2024 1:28 am