https://devzone.nordicsemi.com/f/nordic-q-a/42735/nrf52832-security-secure-bootI am looking at implementing some security features on a NRF52832. I am especially interesting in a Secure Boot process. Looking at the product specifications, I noticed the NRF52832 does not seem to have a lot of the features available that the NRF52840en-USTelligent Community 13Tue, 22 Jan 2019 09:41:53 GMThttps://devzone.nordicsemi.com/thread/167036?ContentTypeID=1Tue, 22 Jan 2019 09:41:53 GMT137ad170-7792-4731-bb38-c0d22fbe4515:0d68381b-8873-473a-a020-70372281de8fSimonr<p>No, it is not possible to make the nRF52832 &quot;immune&quot; to erasing the entire chip.</p> <p>Best regards,</p> <p>Simon</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/166963?ContentTypeID=1Mon, 21 Jan 2019 18:26:57 GMT137ad170-7792-4731-bb38-c0d22fbe4515:29675f9d-9e92-48b8-95af-861a81cd08c1tlgage<p>Great thanks for the info. Another security related question was hoping you could help me with.&nbsp; Is&nbsp;it&nbsp;possible to implement a truly immutable Bootloader? Essentially burning it in with no way to change it. I know there are things you can do such as making the flash non-read/writable and disabling SWD access using the APP_PROTECT register&nbsp;but it seems like you can always still erase the chip&nbsp;using the&nbsp;CTRL-AP access. It is my understanding that a truly immutable boot loader is not possible on this chip, and would just like to confirm that is indeed the case.&nbsp;</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/166761?ContentTypeID=1Mon, 21 Jan 2019 10:00:21 GMT137ad170-7792-4731-bb38-c0d22fbe4515:62ce653c-1cab-405c-8228-72337d0b83fbSimonr<p>Hi</p> <p>The&nbsp;<span>ARM TrustZone Cryptocell 310 security subsystem is not available for the nRF52832. However we do have examples using the Infineon OPTIGA Trust X for hardware security with the nRF52832. Please take a look at this&nbsp;<a href="https://devzone.nordicsemi.com/b/blog/posts/new-in-nrf5-sdk-v15-strong-hardware-based-security-with-infineon-optiga-trust-x-1421904473">blog post</a> for more info on this.&nbsp;Support for this is available in SDKs 15.0.0 and newer. If you are using another crypto chip it should be possible to make some kind of security measures, although we can not help you with making it.&nbsp;</span></p> <p><span>Best regards,</span></p> <p><span>Simon</span></p><div style="clear:both;"></div>