Firmware Security Concerns

The cluster centers on debates about firmware replaceability, security measures like signing and physical access requirements, potential attacks, remote updates, and legal issues such as DMCA violations.

📉 Falling 0.4x Hardware

4,127

Comments

Years Active

Top Authors

#7694

Topic ID

Activity Over Time

2007

2008

2009

2010

2011

2012

2013

2014

115

2015

241

2016

263

2017

222

2018

234

2019

266

2020

318

2021

353

2022

501

2023

554

2024

383

2025

428

2026

Top Contributors

pabs3 (29) fsflover (28) yjftsjthsd-h (22) wmf (22) seba_dos1 (20)

Keywords

USB AFAIR RS9116 HCI tehnoetic.com ROM ASIC MX6 ASUS JTAG firmware updates hardware update bootloader flashing proprietary signed blob debug

Sample Comments

z3phyr • Oct 12, 2024 • View on HN

Maybe allow others to replace the firmware with their own?

adrianN • Mar 13, 2020 • View on HN

Replacing the firmware should require physical access for security reasons imho.

galangalalgol • Mar 11, 2022 • View on HN

could you explain your firmware comment?

cmsj • Aug 6, 2014 • View on HN

Still want to know how they're mitigating firmware attacks :)

nullc • Dec 20, 2022 • View on HN

Couldn't it have been? after all they can remotely update the firmware. They just weren't in this case.

e12e • Jul 5, 2014 • View on HN

They're distributing the firmware on-line (for updates) -- why prevent reading the firmware from the chip itself?

spiderPig • Mar 27, 2018 • View on HN

Sure, but they own the firmware now though

drdaeman • Feb 19, 2014 • View on HN

Aren't firmware updates signed?

bb88 • Jan 6, 2020 • View on HN

They don't supply the firmware. The user must do that.

hsbauauvhabzb • Nov 5, 2021 • View on HN

Unless there’s a firmware back door.