• State Verified Answer
  • Replies 4 replies
  • Subscribers 74 subscribers
  • Views 1275 views
  • Users 0 members are here
Attachments (0)
Nordic Case Info
  • Case ID: 219246
Options
This post is older than 2 years and might not be relevant anymore
More Info: Consider searching for newer posts

What precautions can be taken to avoid getting compromised due to the proprietary radio stack?

Avamander

In the light of recent news like this one, https://arstechnica.com/information-technology/2018/11/bluetooth-bugs-bite-millions-of-wi-fi-aps-from-cisco-meraki-and-aruba/, I was wondering what precautions could I take to avoid any vulnerabilities in the radio stack from affecting the rest of my application, given that the stacks are all totally proprietary I can't really recompile them with safety measures, what else could I do? Does NordicSemi have some kind of a hardening guide somewhere? 

Parents
  • +1

    You need to use a secure DFU with a secure bootloader, use the latest version of our SoftDevices, use LE Secure Connections, and enable readback protection. 

    The nRF52840 has an ACL — Access control lists that can prevent the CPU from reading and/or writing to a region of flash. ie you can protect you application from getting overwritten by malicious code. The only way to disable the ACL is to reset the device. It's then up to your secure bootloader to enable the ACL and verifying the application before booting it. 

    The nRF52840 also has an ARM CC310 cryptocell that enables the MCU to establish a root of trust in a key stored in flash. The secure bootloader can store a key in the CC310s SRAM and use ACL to prevent the CPU from reading the key that is stored in flash. 
    The only way to get to this key is an optical read of the flash. 

Reply
  • +1

    You need to use a secure DFU with a secure bootloader, use the latest version of our SoftDevices, use LE Secure Connections, and enable readback protection. 

    The nRF52840 has an ACL — Access control lists that can prevent the CPU from reading and/or writing to a region of flash. ie you can protect you application from getting overwritten by malicious code. The only way to disable the ACL is to reset the device. It's then up to your secure bootloader to enable the ACL and verifying the application before booting it. 

    The nRF52840 also has an ARM CC310 cryptocell that enables the MCU to establish a root of trust in a key stored in flash. The secure bootloader can store a key in the CC310s SRAM and use ACL to prevent the CPU from reading the key that is stored in flash. 
    The only way to get to this key is an optical read of the flash. 

Children
Related
Terms of service