https://devzone.nordicsemi.com/f/nordic-q-a/23920/can-a-third-party-attacker-extract-public-keyCan a third-party attacker extract the public key in the signed firmware(.zip) generated by nrfutil through decompile hex or bin file?en-USTelligent Community 13Sun, 30 Jul 2017 22:32:52 GMThttps://devzone.nordicsemi.com/thread/94143?ContentTypeID=1Sun, 30 Jul 2017 22:32:52 GMT137ad170-7792-4731-bb38-c0d22fbe4515:4f89cec6-e770-4cf5-96fe-a8eeb9fa4d59Roger Clark<p>You&#39;re welcome</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/94142?ContentTypeID=1Sun, 30 Jul 2017 09:04:50 GMT137ad170-7792-4731-bb38-c0d22fbe4515:d96ed8bd-7cf4-4430-9955-548f5e198625J.Kwon<p>Thank you.</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/94141?ContentTypeID=1Sun, 30 Jul 2017 08:38:16 GMT137ad170-7792-4731-bb38-c0d22fbe4515:46b05669-db31-4a43-b3db-447059214cafRoger Clark<p>AFIK.</p> <p>The firmware (binary) is signed but not encrypted by nrfutil</p> <p>Hence they public key can be extracted.</p> <p>However Nordic uses public key encryption, so that even if the public key is discovered, its not possible to create signed firmware unless you know the Private key -</p> <p>If you want you firmware binary to be encrypted so that it can be reverse engineered, you&#39;ll need to encrypt the firmware and use a bootloader that decrypts as well as just checking that signature.</p> <p>@RK. You pipped me to the post.</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/94140?ContentTypeID=1Sun, 30 Jul 2017 08:35:59 GMT137ad170-7792-4731-bb38-c0d22fbe4515:e3a788f7-36e7-45cf-a74d-2de7e803ab2bRK<p>who cares if they could extract a public key, the whole point of a public key is that .. it&#39;s public.</p><div style="clear:both;"></div>