Hacker News new | ask | show | jobs
by kbumsik 2407 days ago
I'm wondering, how many companies that use ESP32 actually use the firmware security feature?
2 comments
viraptor 2406 days ago
Almost everyone who's selling a real device, in my experience. It's pretty standard to disable firmware reads in embedded cpu products.
link
baybal2 2406 days ago
And from my experience, it's virtually none.

Since I first started work in OEM electronics in 2007, I only saw that being requested 3 times.

link
jdnenej 2407 days ago
It's used on most consumer devices simply to slow down clone devices being created.
link
slumos 2406 days ago
Here's one that definitely did not:

> Vulnerability n*2: No security settings (at all)

https://limitedresults.com/2019/01/pwn-the-lifx-mini-white/

link
kbumsik 2406 days ago
Yeah that's what I thought, like many of them don't really care about it...
link