DFU security

As you can see in table 8 in the MPU chapter of the Reference Manual, code running in code region 1 will always be able to read other code in region 1, so what you state would most likely be technically possible.

If you are concerned about this, I'd therefore strongly recommend you to include some kind of signing in your DFU process, so that only binaries that have been cryptographically signed with a secret key will be accepted and actually written to the chip. We don't yet have any example code for anything like this, but It should be fairly easy to extend the bootloader from the SDK with such functionality.

As you can see in table 8 in the MPU chapter of the Reference Manual, code running in code region 1 will always be able to read other code in region 1, so what you state would most likely be technically possible.

If you are concerned about this, I'd therefore strongly recommend you to include some kind of signing in your DFU process, so that only binaries that have been cryptographically signed with a secret key will be accepted and actually written to the chip. We don't yet have any example code for anything like this, but It should be fairly easy to extend the bootloader from the SDK with such functionality.