[riot-notifications] [RIOT-OS/RIOT] sys: provide secure over-the-air update mechanism (#8902)

Matthias Wählisch notifications at github.com
Mon Apr 9 22:33:43 CEST 2018


I'm not sure  if "secure" is the right term based on the current implementation. The proposal just verifies the integrity of the received image. Verification of integrity is only one aspect in the context of security.

Why should the RIOT node trust the public key?

The current proposal does not allow for downgrade of a firmware image. Is this useful?

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/RIOT-OS/RIOT/pull/8902#issuecomment-379885059
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.riot-os.org/pipermail/notifications/attachments/20180409/e73efb67/attachment-0001.html>


More information about the notifications mailing list