Greetings,
We are trying to enable/implement the read-back protection feature of the nRF52840 SoC and during this process we came accross this reported vulnerability of the read-back mechanism shared by Nordic regarding Read-Back Protection: Informational Notice (IN) - Vulnerability of the nRF52 series.
Based on this vulnerability which states that:
A device that programmatically configured APPROTECT can have that configuration circumvented and program memory containing program instructions can be read out of the device
According to this, we cannot use the CONFIG_NRF_APPROTECT_LOCK=y configuration option or any other (programmatical) methods (Steps 1,2 in the guide) mentioned in this guide by Nordic to enable the read-back protection. Is this correct?
If so, what is the correct way to set/enable the readback protection for the nRF52840 device without being exposed to the aforementioned vulnerability?
I am looking forward to hearing from you.
Best regards,
Stavros
