Encrypted firmware via USB Bootloader for CYPD3123

Announcements

Live Webinar: USB-C adoption. Simple & Cost-efficient solutions | April 18th @9am or 5pm CEST. Register now !

Ask the Community
Close
Ask the Community
nav search Icon
Forums gray-arrow gray-arrow
Resources gray-arrow gray-arrow
About gray-arrow gray-arrow
Groups gray-arrow gray-arrow
nav-user Account

Tip / Sign in to post questions, reply, level up, and achieve exciting badges. Know more

cross mob

Encrypted firmware via USB Bootloader for CYPD3123

OlEr_1999891
Level 5
Level 5
50 replies posted 25 replies posted 25 sign-ins
‎Mar 19, 2021 01:13 AM
‎Mar 19, 2021 01:13 AM
Jump to solution

Hi!

We are deploying adapters based on CYPD3123 and we use USB bootloader for firmware updates. Now we would like to add support for encryption of these firmware images so not anyone can update them in the field.

Is there a guide on how to set this up?

Cheers

Olof

0 Likes
Subscribe
1 Solution

Re: Encrypted firmware via USB Bootloader for CYPD3123

ShifangZ_26
Moderator
Moderator
Moderator
10 likes given 250 sign-ins 1000 replies posted
In response to OlEr_1999891
‎Jun 18, 2021 06:35 AM
‎Jun 18, 2021 06:35 AM
Jump to solution

Hello Olof,

 

You are correct that CCG3 silicon does not includes hard block  for encrypt, if you needs this, you have to use firmware implementing it. It is a bit of complex, recommend you use our new silicon directly.

 

Best Regards,

Lisa

View solution in original post

0 Likes
3 Replies

Re: Encrypted firmware via USB Bootloader for CYPD3123

ShifangZ_26
Moderator
Moderator
Moderator
10 likes given 250 sign-ins 1000 replies posted
‎Mar 23, 2021 02:18 AM
‎Mar 23, 2021 02:18 AM
Jump to solution

Hello Olof,

 

Currently, CYPD3123 USB bootloader is not implemented Encrypted firmware by default. And CYPD3123 USB bootloader is official release for  Encrypted firmware example.  If you need example code of Encrypted firmware, recommend you referring CCG6SF/DF firmware example which is integrated Encrypted SHA-256.

Best Regards,

Lisa

0 Likes

Re: Encrypted firmware via USB Bootloader for CYPD3123

OlEr_1999891
Level 5
Level 5
50 replies posted 25 replies posted 25 sign-ins
‎Mar 23, 2021 02:32 AM
‎Mar 23, 2021 02:32 AM
Jump to solution

Hi Lisa!

Ok, will take a look at that. But noticed that in the USB Bootloader datasheet, it mentions:

OlEr_1999891_0-1616491694403.png

 

It can be enough for us for time being to just have "password" for firmware updates instead of encrypted firmware. How is this implemented on a CYPD3123? Notice that in the usb_hid.c file it looks like at least part of the USB bootloader function is implemented? 

And there are some code like (in boot.c):

#if (SECURE_FW_UPDATE == 1)
/* Buffer to hold FW HASH. */
uint32_t fw_hash[CRYPTO_SHA_2_HASH_SIZE_WORDS] = {0};
#endif /* SECURE_FW_UPDATE */

Could you explain what needs to be done to get this up and running on a CYPD3123? We don't need the signed FW that you have in CCG6.

Cheers

Olof

 

0 Likes

Re: Encrypted firmware via USB Bootloader for CYPD3123

ShifangZ_26
Moderator
Moderator
Moderator
10 likes given 250 sign-ins 1000 replies posted
In response to OlEr_1999891
‎Jun 18, 2021 06:35 AM
‎Jun 18, 2021 06:35 AM
Jump to solution

Hello Olof,

 

You are correct that CCG3 silicon does not includes hard block  for encrypt, if you needs this, you have to use firmware implementing it. It is a bit of complex, recommend you use our new silicon directly.

 

Best Regards,

Lisa

0 Likes