https://devzone.nordicsemi.com/f/nordic-q-a/66532/enable-encryptionHi, I am working on a project to send commands from mobile to device and vice versa. I am using nRF5_SDK_17.0.0_9d13099\examples\ble_peripheral\ble_app_template . I have made a custom service and characteristics and made secured like this. Now is thereen-USTelligent Community 13Thu, 01 Oct 2020 11:14:03 GMThttps://devzone.nordicsemi.com/thread/272491?ContentTypeID=1Thu, 01 Oct 2020 11:14:03 GMT137ad170-7792-4731-bb38-c0d22fbe4515:929316c9-dc69-4f32-8adb-f5d8b135ee44Hung Bui<p>You can read more about the cryptocell cc310 here:&nbsp;<a href="https://infocenter.nordicsemi.com/topic/ps_nrf52840/cryptocell.html?cp=4_0_0_5_5">https://infocenter.nordicsemi.com/topic/ps_nrf52840/cryptocell.html?cp=4_0_0_5_5</a></p> <p>But it&#39;s basically a hardware cryptography peripheral that can be utilized to encrypt your data, it can be faster and more efficient compare to using software cryptography library.&nbsp;<br />It wouldn&#39;t help you to encrypt the actual firmware of your application.&nbsp;</p> <p>To protect your firmware you can use the <a href="https://infocenter.nordicsemi.com/topic/ps_nrf52840/uicr.html?cp=4_0_0_3_4_0_4#register.APPROTECT">APPROTECT</a>&nbsp;to block the debug/programmer access, and use the <a href="https://infocenter.nordicsemi.com/topic/ps_nrf52840/acl.html?cp=4_0_0_5_2">ACL </a>if you want to block access internally from different parts of the flash memory.&nbsp;</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/272438?ContentTypeID=1Thu, 01 Oct 2020 07:49:35 GMT137ad170-7792-4731-bb38-c0d22fbe4515:0fb9ac76-a54d-4be4-9d48-546145bc622cMuqarrab<p>Thanks,&nbsp;<a href="https://devzone.nordicsemi.com/members/hungbui">Hung Bui</a><br /><br />I am asking about the &quot;<strong><em>Arm CryptoCell CC310 cryptographic security module</em></strong>&quot; in the nRF52840 document. What is this? Can you please explain what is this and how can I achieve this?<br /><br /><br /></p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/272295?ContentTypeID=1Wed, 30 Sep 2020 12:13:01 GMT137ad170-7792-4731-bb38-c0d22fbe4515:385f47a0-c703-464b-aeca-bcdbec627b59Hung Bui<p>Hi Muqarrab,&nbsp;</p> <p>Please describe what exactly you meant by &quot;Secure firmware&quot; or &quot;Secure my firmware&quot;. What kind of protection you want to your firmware ?&nbsp;<br />Regarding encrypting data communication, the ble_app_template uses peer manager library so most of the security procedures are handled by the library.&nbsp;<br />When you configure the characteristic with&nbsp;BLE_GAP_CONN_SEC_MODE_SET_ENC_NO_MITM(), the central/client will receive a Insufficient Authorization when it tries to read/write to the characteristic. After that the default behavior is that the central will initiate the pairing/bonding process. And the link will be encrypted after that.&nbsp;<br />You don&#39;t need to trigger pairing from the server/peripheral side.&nbsp;</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/272220?ContentTypeID=1Wed, 30 Sep 2020 09:34:35 GMT137ad170-7792-4731-bb38-c0d22fbe4515:6e709368-d880-455d-8708-8e2bee894769Muqarrab<p>Yes, I want both.<br />1- Secure Firmware<br />2-<span>encrypt data communications</span></p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/272219?ContentTypeID=1Wed, 30 Sep 2020 09:32:09 GMT137ad170-7792-4731-bb38-c0d22fbe4515:4f595414-b9fd-44f3-8c74-1494ecaa16baawneil[quote userid="67200" url="~/f/nordic-q-a/66532/enable-encryption"]My main purpose is to secure my firmware[/quote] <p>&quot;securing&quot; firmware is usually a different topic from encrypting your data communications</p> <p>Could you clarify what you mean by that?</p><div style="clear:both;"></div>