- Thu Jul 05, 2018 4:23 am
#76875
Hi Folks,
As the Wifi credential or SSL certificate will be part of the firmware it will present in the SPI Flash.
So as I understand without encrypting SPI flash the WiFi credential or any other private keys or certificates can be easily accessed by reading flash content. I understand the network may be secured by SSL, WPA or other mechanism but if somebody has direct access to the device it can be easily accessed.
I am working on some customer product based on ESP8266 but I need to make sure secure information is fully protected even from the direct access of the device.
Is there ay mechanism encrypting part of entire SPI Flash so the protected data cannot be easily read and used?
Best,
Piotr
As the Wifi credential or SSL certificate will be part of the firmware it will present in the SPI Flash.
So as I understand without encrypting SPI flash the WiFi credential or any other private keys or certificates can be easily accessed by reading flash content. I understand the network may be secured by SSL, WPA or other mechanism but if somebody has direct access to the device it can be easily accessed.
I am working on some customer product based on ESP8266 but I need to make sure secure information is fully protected even from the direct access of the device.
Is there ay mechanism encrypting part of entire SPI Flash so the protected data cannot be easily read and used?
Best,
Piotr
