Is it possible to rotate the signing key for secure DFU?

Hi,

Our default implementation doesn't include a key rotation scheme. However, if your key got compromised, I think you should be able to issue a bootloader update with a new hardcoded public key that will be used for subsequent updates. 

So, the bootloader-only package is signed with the old key, and contains the new key? Can you expand on how you would hardcode the key into the bootloader?

Yes, that's what meant. The public key is always included in the bootloader image. You can re-compile your bootloader with a public key from a new key-pair (key is in dfu_public_key.c) then use the old key to sign the update. 

Thanks for the pointers. I found dfu_public_key.c in the dfu example. I get the gist of it, and I think this should work. I will make a new question if I have more questions!

Thanks for the pointers. I found dfu_public_key.c in the dfu example. I get the gist of it, and I think this should work. I will make a new question if I have more questions!