- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi!
We are deploying adapters based on CYPD3123 and we use USB bootloader for firmware updates. Now we would like to add support for encryption of these firmware images so not anyone can update them in the field.
Is there a guide on how to set this up?
Cheers
Olof
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello Olof,
You are correct that CCG3 silicon does not includes hard block for encrypt, if you needs this, you have to use firmware implementing it. It is a bit of complex, recommend you use our new silicon directly.
Best Regards,
Lisa
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello Olof,
Currently, CYPD3123 USB bootloader is not implemented Encrypted firmware by default. And CYPD3123 USB bootloader is official release for Encrypted firmware example. If you need example code of Encrypted firmware, recommend you referring CCG6SF/DF firmware example which is integrated Encrypted SHA-256.
Best Regards,
Lisa
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Lisa!
Ok, will take a look at that. But noticed that in the USB Bootloader datasheet, it mentions:
It can be enough for us for time being to just have "password" for firmware updates instead of encrypted firmware. How is this implemented on a CYPD3123? Notice that in the usb_hid.c file it looks like at least part of the USB bootloader function is implemented?
And there are some code like (in boot.c):
#if (SECURE_FW_UPDATE == 1)
/* Buffer to hold FW HASH. */
uint32_t fw_hash[CRYPTO_SHA_2_HASH_SIZE_WORDS] = {0};
#endif /* SECURE_FW_UPDATE */
Could you explain what needs to be done to get this up and running on a CYPD3123? We don't need the signed FW that you have in CCG6.
Cheers
Olof
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello Olof,
You are correct that CCG3 silicon does not includes hard block for encrypt, if you needs this, you have to use firmware implementing it. It is a bit of complex, recommend you use our new silicon directly.
Best Regards,
Lisa