https://devzone.nordicsemi.com/f/nordic-q-a/21830/ios-ota-update-on-a-secured-linkHi, this question is more about iOS than nRF, but there&#39;s probably here some experience around this subject. First the context : We have a product based on nRF51, S110 v7.3 and I recently implemented ANCS service requiring secured link (bondingen-USTelligent Community 13Mon, 08 May 2017 07:37:41 GMThttps://devzone.nordicsemi.com/thread/85742?ContentTypeID=1Mon, 08 May 2017 07:37:41 GMT137ad170-7792-4731-bb38-c0d22fbe4515:6971fdad-385c-4a97-a59b-9d8e360c6539ThierryC<p>Thanks for your answer and proposal 2). We will update our Bootloader following these advises.</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/85741?ContentTypeID=1Fri, 05 May 2017 11:38:05 GMT137ad170-7792-4731-bb38-c0d22fbe4515:daca3840-8d53-4b46-acb2-bbab24178d76Hung Bui<p>Hi,</p> <ol> <li> <p>Correct. The phone expect that the device has the stored bond information (LTK) and expect the link to be encrypted. If the device doesn&#39;t have that, it will disconnect.</p> </li> <li> <p>Yes, you can follow what we do in our bootloader (in SDK v11 and earlier) and the buttonless dfu example that we we forward bond information from the application to the bootloader (via RAM).</p> </li> </ol> <p>An easier option, if you don&#39;t need the link to be encrypted when doing DFU, is to change the BLE address when you are in DFU mode, so the phone will think that the device is a new device and won&#39;t enforce the encryption.</p> <p>You need to retain the bond information when doing DFU so that when you run with your new application you can re-encrypt the link again.</p><div style="clear:both;"></div>