https://community.nxp.com/t5/Secure-Authentication/protect-firmware-code-in-target-hardware/m-p/1092483#M327 <HTML><HEAD></HEAD><BODY><P>Hi, how could SE050 possibly contribute to a concept to prevent firmware from being hacked during and after a remote update process?</P><P>Our question in detail: During firmware remote data transfer the firmware code is protected by TLS. However, finaly the firmware sits as a de-crypted binary in the NAND or NOR Flash. The identified risk is that this NAND or NOR could be sniffed or the memory hardware component could be extracted from the PCB and put in a spy hardware environment.<BR />Thank you ! Best regards, Bernd</P></BODY></HTML> Mon, 13 Jul 2020 09:14:29 GMT bscheuffele 2020-07-13T09:14:29Z https://community.nxp.com/t5/Secure-Authentication/protect-firmware-code-in-target-hardware/m-p/1092483#M327 <HTML><HEAD></HEAD><BODY><P>Hi, how could SE050 possibly contribute to a concept to prevent firmware from being hacked during and after a remote update process?</P><P>Our question in detail: During firmware remote data transfer the firmware code is protected by TLS. However, finaly the firmware sits as a de-crypted binary in the NAND or NOR Flash. The identified risk is that this NAND or NOR could be sniffed or the memory hardware component could be extracted from the PCB and put in a spy hardware environment.<BR />Thank you ! Best regards, Bernd</P></BODY></HTML> Mon, 13 Jul 2020 09:14:29 GMT https://community.nxp.com/t5/Secure-Authentication/protect-firmware-code-in-target-hardware/m-p/1092483#M327 bscheuffele 2020-07-13T09:14:29Z https://community.nxp.com/t5/Secure-Authentication/protect-firmware-code-in-target-hardware/m-p/1092484#M328 <HTML><HEAD></HEAD><BODY><P>Hi Bernd,</P><P></P><P>If the binary is plain in the NAND or NOR flash, I think SE050 can help little on such kind of issue, instead a tamper detection device is needed for your case. As I know, some host controllers support tamper detection,&nbsp;for example, Kinetis K81,&nbsp;<BR />Please kindly refer to&nbsp;<A class="link-titled" href="https://www.nxp.com/products/processors-and-microcontrollers/arm-microcontrollers/general-purpose-mcus/k-series-cortex-m4/k8x-secure/kinetis-k81-150-mhz-hw-cryptographic-co-processor-anti-tamper-quadspi-microcontrollers-mcus-based-on-arm-cortex-m4-core:K81_150" title="https://www.nxp.com/products/processors-and-microcontrollers/arm-microcontrollers/general-purpose-mcus/k-series-cortex-m4/k8x-secure/kinetis-k81-150-mhz-hw-cryptographic-co-processor-anti-tamper-quadspi-microcontrollers-mcus-based-on-arm-cortex-m4-core:K81_150">Arm® Cortex®-M4|Kinetis K81 150 MHz 32-bit MCUs | NXP</A>&nbsp;for details.</P><P></P><P>Hope that helps,</P><P></P><P>Have a great day,<BR />Kan</P><P><BR />-------------------------------------------------------------------------------<BR />Note:<BR />- If this post answers your question, please click the "Mark Correct" button. Thank you!<BR />- We are following threads for 7 weeks after the last post, later replies are ignored<BR />Please open a new thread and refer to the closed one, if you have a related question at a later point in time.<BR />-------------------------------------------------------------------------------</P></BODY></HTML> Tue, 14 Jul 2020 04:49:15 GMT https://community.nxp.com/t5/Secure-Authentication/protect-firmware-code-in-target-hardware/m-p/1092484#M328 Kan_Li 2020-07-14T04:49:15Z