FAQs
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

secure firmware update using USART

Go to solution
TKopp.67
Associate II

‎2023-11-28 06:04 AM

Hi everyone,

I'm working in a Medical devices company and we use currently plenty of STM32s (F0,F1,F4, maybe soon H7). Until now, we didn't bother that much the cybersecurity topic for the firmwares but now the norms are forcing us :D.

I checked a bit all the security features availables on STM32 products and i'm a bit confused because there is a looooot.

Anyway, we currently use stm32-flasher to update our firmware via the uart interface of the bootloader. 

Here comes my question, how can i secure this update, we to be able to update if it's needed but to avoid/make it more difficult for anyone connecting to the device from our main CPU via our external debug interface?

Thanks in advance for your answer,

Thomas 

0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions
Go to solution
STea
ST Employee

‎2023-11-28 07:21 AM

Hello @TKopp.67 ,

The security solution offered by ST is indeed variant and covering almost all of the stm32 family . i recommend you have a look on this page for more information about ST security offer .

Regarding securing the firmware update process ST offers the SBSFU(secure boot secure firmware update) package to do so . unfortunately it is not available for STM32 F1 and F0 . you can check the SBSFU solution more  in this wiki or check the Getting started with the X-CUBE-SBSFU .

BR

In order to give better visibility on the answered topics, please click on Accept as Solution on the reply which solved your issue or answered your question.

View solution in original post

0 Kudos
2 REPLIES 2
Go to solution
STea
ST Employee

‎2023-11-28 07:21 AM

Hello @TKopp.67 ,

The security solution offered by ST is indeed variant and covering almost all of the stm32 family . i recommend you have a look on this page for more information about ST security offer .

Regarding securing the firmware update process ST offers the SBSFU(secure boot secure firmware update) package to do so . unfortunately it is not available for STM32 F1 and F0 . you can check the SBSFU solution more  in this wiki or check the Getting started with the X-CUBE-SBSFU .

BR

In order to give better visibility on the answered topics, please click on Accept as Solution on the reply which solved your issue or answered your question.
0 Kudos
Go to solution
TKopp.67
Associate II
In response to STea

‎2023-11-29 12:59 AM

Hello @STea

Thank you for your answer, i will check about it.

Best Regards,

 

 

0 Kudos
Top