RE: DFU 52840

mijiale — Fri, 25 Jan 2019 09:42:40 GMT

Thank you very much for your reply！

RE: DFU 52840

bjorn-spockeli — Thu, 24 Jan 2019 09:02:55 GMT

Hi Mijiale,

you are correct that its only the init packet that contains a signed hash of the firmware, but this does not mean that one can update arbitrary firmware just by using a Init packet from a previous update.

The init packet signature is actually an encrypted hash of the firmware image, this encrypted hash is de-crypted on the receiver side and compared to the hash of the received data(i.e. firmware). If the data is modified after the signature is created(i.e. the hash of the data is calculated and encryted), then the hash comparison on the receiver side will fail.

Hence, this method ensures three things:

Efficiency: Its more efficient to sign the hash instead of
Integrity: If the data (i.e. the firmware) is changed after the image was signed or the signature is changed, then the post-validation of the data will fail as the hashes will not be identical.
Authenticity: The recipient knows that the data is coming from a trusted source.

Best regards
Bjørn