Page MenuHomePhabricator

Implement rollback protection without HW counters
Open, NormalPublic


A device might does not support non-volatile HW counters. But still desirable to support rollback protection as much as possible. In this case boot loader can extract security counter (or image version number) from image manifest and compare these to make decision during a software update.

A drawback of this solution (lack of HW counters) that it does not protect against attacks when the content of the flash (active image) is replaced with an older version.

Event Timeline

tamasban triaged this task as Normal priority.May 13 2019, 1:43 PM
tamasban created this task.