OTA DFU package encryption

Hello,

We are evaluating the nRF5_SDK_v15.0.0 example OTA DFU bootloaders on a nRF52840-PDK.
We have generated a signed firmware update package using nrfutil pkg generate .. with a private key.

In the documentation is written, that the init package is signed with the private key.
Are the firmware packages also encrypted with this private key?

If no, is there an easy way to integrate end to end firmware encryption in the OTA DFU process (dfu_package.zip file -> bootloader)?

Best Regards
Roland

Parents

0 Einar Thorsrud over 7 years ago

Hi Roland,

The DFU bootloader in the SDK only uses signing, so the data itself is in cleartext. It is possible to implement encryption of the firmware in the DFU package as discussed in this thread, but Nordic does not provide any examples or tools for it.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 Einar Thorsrud over 7 years ago

Hi Roland,

The DFU bootloader in the SDK only uses signing, so the data itself is in cleartext. It is possible to implement encryption of the firmware in the DFU package as discussed in this thread, but Nordic does not provide any examples or tools for it.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

0 sijohans over 6 years ago in reply to Einar Thorsrud

Are there any plans of adding this in the future?
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Einar Thorsrud over 6 years ago in reply to sijohans

There are no immediate plans (as far as I know).
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel