Software Security of NRF52832

Hi

By using APPROTECT, no one will be able to read the memory on your chip, as the only way to disable it will be to delete the whole flash, which will delete your application as well, which is what makes this a safe way to protect the memory on your device.

Best regards,

Simon

The whole flash can be deleted by any one who have programmer/debugger right ?. I only should have access for that. Also is there any reference code available in which this is APPROTECT is implemented ?

Hi

We don't have any examples implementing APPROTECT, as that would cause the device to have to recover every time it is flashed, but there are two rather simple ways of implementing it. Either, you can set it in your application code like my colleague explains in this thread. Or, you can download nrfjprog on your computer and enable APPROTECT by calling the command nrfjprog --rbp all in a command window when your device is connected. In both cases, you will have to recover the chip/ do a full chip erase in order to access the memory of the chip. 

Yes, anyone with a debugger will be able to erase the flash of your device, unless you remove that option by not connecting the debug pins. I assume you won't be reprogramming the device when it's released.

Best regards,

Simon

okay thank you so much. Two more things simon,

1. Will nrf52 will only get connected to apps provided by nordic? I want to it to get connected to serial blueooth terminal which is not happening.

2. How to implement serialization.

Hi

We are starting to move off-topic from software security now. Please create a new support ticket for these issues, as we strive to keep each ticket to one subject to make it easier for people with similar problems in the future to find what they're looking for.

Best regards,

Simon

PS: The Holiday season is upon us, which will leave us understaffed until January 6th, 2020, so delayed replies will occur during this time. Sorry for the inconvenience and happy Holidays!