• State Resolved
  • Locked Locked
  • Replies 2 replies
  • Subscribers 98 subscribers
  • Views 425 views
  • Users 0 members are here
Support feedback
Options
Options
Related

This thread has been locked.

If you have a related question, please click the "Ask a related question" button in the top right corner. The newly created question will be automatically linked to this question.

AM3358: CPSW security concern

Leo Meza
Prodigy 20 points

Part Number: AM3358

Hi All,

Our design might possibly use an AM3358 which has an Ethernet Switch Subsystem with two external ports. One of the external ports (port 1) we would use for communicating with another processor. But, the other (unused) external port (port 2) could be used by a malicious entity to sniff the communications on that network.

Is there a way to configure the Ethernet Switch Subsystem to effectively block port 2 from any network traffic? What other network security provisions does this system provide for?

Is there a different TI processor that might be more suitable for the design description provided above?

Best regards and thanks in advance!

  • 0
    TI__Guru**** 393215 points
    The factory team have been notified. They will respond here.
  • 0
    TI__Mastermind 27890 points

    Hi Leo,

    I can think of a couple of ways to accomplish what you are trying to do.

    First, you could configure the CSPW in "Dual MAC Mode". In this mode, the two external EMAC ports do not see each other's packets. This is a pretty common config for our customers.

    Second, you could pinmux the pins on the used port into a different functionality entirely, UART for example. In this way, even if someone were to reconfigure your device out of Dual MAC Mode, any exposed pins on the second (unused) interface wouldn't have any Ethernet traffic at all.

    In addition to both of these, you should also programmatically disable the unused port in SW.

    Hope this helps!