Implement rollback protection without HW counters
Open, NormalPublic

Description

A device might does not support non-volatile HW counters. But still desirable to support rollback protection as much as possible. In this case boot loader can extract security counter (or image version number) from image manifest and compare these to make decision during a software update.

A drawback of this solution (lack of HW counters) that it does not protect against attacks when the content of the flash (active image) is replaced with an older version.

tamasban created this task.May 13 2019, 1:43 PM
tamasban triaged this task as Normal priority.