Protect modem certificate

Hi, are there any Ideas here how I can protect the certificate slot agains re-usage?. It would be great to close this door, even if its not that big

Hi, are there any Ideas here how I can protect the certificate slot agains re-usage?. It would be great to close this door, even if its not that big

Hello, 

This is the answer I got from one of our certificate experts:

 The certificate is stored in the modem domain and the modem only acts based on commands it receives from the application. Modem does not validate the application, so even if the application is changed, the modem still responds to the commands it receives. Neither has the modem any way of detecting application ERASEALL. 

Kind regards,
Øyvind

Okay good we have a final answer here. Still I see this as a big security issue on device level. What is next? Is it usefull to open a ticket here:

https://www.nordicsemi.com/About-us/PSIRT

Best regards

Daniel

Hi Daniel, 

Yes, I believe that is the next step. Please link to this ticket as well. 

Thank you!

Kind regards,
Øyvind

Hello again Daniel, 

First of all, thank you for bringing this to our attention. The PSIRT team has assessed your PSIRT report. They write that the "official response to the DevZone request is to configure eraseprotect to mitigate this attack vector"

The team acknowledges the scenario, and will discuss further measures to counter similar scenarios in the future products. That said the ERASPROTECT should be the countermeasure to use in your scenario as this will prevent others from erasing the device and thus programming another custom FW. 

Let me know if you have any further questions. 

Kind regards,
Øyvind

Thanks for the response and investigation. We will consider this for our final product to close this attack weak point.

best regards

daniel