• State Resolved
  • Locked Locked
  • Replies 5 replies
  • Subscribers 41 subscribers
  • Views 1213 views
  • Users 0 members are here
Support feedback
Options
Options
Similar topics

This thread has been locked.

If you have a related question, please click the "Ask a related question" button in the top right corner. The newly created question will be automatically linked to this question.

CC3100/CC3200 NWP Security Updates

billy kozak
Prodigy 170 points
Other Parts Discussed in Thread: CC3200, CC3100

It is my understanding that it is not possible to modify the NWP ROM firmware of a CC3100/CC3200. What does TI plan to do in the event that a security vulnerability is found in the NWP firmware and needs to be patched? Is device replacement really the only option?


Has TI released, or do they plan to release, a security plan to address these sort of issues?

Thanks!

  • 0
    Guru 21435 points

    Hi Billy,

    I cannot speak for TI and their plans, but you could always update your application, making sure that it using the soft libraries and not the ROM for the buggy calls. This will just require a boot-loader of some sort, which should be relatively painless, since we are told that OTA (Over The Air) updates will be possible. The only disadvantages is that it will make the application slightly larger, so make sure you have the space available.

    Glenn.

  • 0 in reply to Glenn Vassallo
    Prodigy 170 points

    Glenn Vassallo said:

    I cannot speak for TI and their plans, but you could always update your application, making sure that it using the soft libraries and not the ROM for the buggy calls.

    This is something I've considered, and I think it should be possible to work around most potential security problems through the application like this but its certainly an imperfect solution.


    I would think that TI would have some sort of a plan in place so that users could avoid having to re-implement NWP functionality in their application code if a major bug is found. Specifically, after reading through more of the CC3200 documentation, I am wondering if perhaps some, if not all, security updates are able to be applied using a "service pack" update (assuming it is possible to apply these updates OTA). My understanding is that a service pack update is not equivalent to a ROM firmware update although perhaps I'm wrong as I must admit that I really don't understand exactly what the service pack is.

  • 0 in reply to billy kozak
    Guru 21435 points

    Billy,

    I could be wrong, but my understanding is that your have the NWP drivers which have been burnt into ROM, and as the name suggests, this is read only and cannot be updated. The firmware updates however do update these drivers, so I imagine this ROM will also be updated over time, the later the chip the later the version of the firmware burnt into ROM. I also believe that if you format your serial flash, then you application will default to using the ROM drivers instead of the ones on the service pack. 

    You also have peripheral drivers in ROM (in the MCU part of the CC3200), and I know you can reference to use these instead of the libraries by using the MAP_ or is it ROM_ prefix....not sure if the NWP drivers have this capability,

    Perhaps someone from TI can fill in the gaps.

    Glenn.

  • 0 in reply to Glenn Vassallo
    Prodigy 170 points

    Glen,


    Thanks for the reply! If you are indeed correct that the service pack updates replace the NWP ROM drivers then it seems that it will be possible to update buggy ROM code.


    I would certainly appreciate if someone from TI could confirm that the service pack works like this and, if it does, that any code in the  NWP ROM can be patched in this way.

    Thanks!

  • 0 in reply to billy kozak
    TI__Expert 4345 points

    Billy,

    I confirm that we have a RAM based firmware patching mechansim in place to fix specific bugs or issues in the ROM based NWP firmware.

    We plan to use this mechanism to release Service Packs as and when necessary.

    We also have a commitment to enabling a Roadmap of new features and capabilities for the SimpleLink WiFi family, which will be released via new (ROM) revisions of the CC3200 and CC3100 devices.

    Regards,

    Adnan