cancel
Showing results for 
Search instead for 
Did you mean: 

Would I introduce security vulnerabilities if I modify the SBSFU to send TRACE messages to an SD card?

Clark Sann
Senior

@Jocelyn RICARD​ My user app logs a status and error messages to an SD card. I would like to log all the SBSFU startup messages to the same SD card. Would I introduce security vulnerabilities if I modify the SBSFU to send its TRACE messages to an SD card?

4 REPLIES 4
Jocelyn RICARD
ST Employee

Hello @Clark Sann​ ,

if you use debug messages already provided in SBSFU there are no secret information provided, so this is safe.

If you change the traces to your liking just make sure no more information is shared

Best regards

Jocelyn

Clark Sann
Senior

@Jocelyn RICARD​ Yes, I will keep the same debug messages, byt rather than sending them to the USART I would send them to the SD card. I'm pretty sure that this will not add a vulnerability, but I wanted to check with you before I do this.

Jocelyn RICARD
ST Employee

Yes @Clark Sann​ , using SD card does not change anything compared to USART.

Best regards

Jocelyn

GLASS
Senior

Hi, using Sd-Card require a middleware (fatfs), so more sw used = more potential vulnerability​...