Protection against code dump from the flash memory (hacking)

Forum|Forum|6 years ago
August 1, 2019
1 reply
1025 views

Dear all. How secure is STM32 MCUs to prevent hackers from dumping the firmware from the flash memory? I've searched on the internet and on Taobao (like ebay) China and I found there are plenty of companies that claim they can crack and dump the flash code for almost any STM32 MCUs. Below is an example link :

https://item.taobao.com/item.htm?spm=a230r.1.14.15.1275936aMaVbKE&id=556508470444&ns=1&abbucket=10#detail

I believe they have tools the decap a MCU and connecting the wires by FIB or some technologies to the silicon die to dump the code in the flash memory. This is a very big threat to people like us who works on STM32 MCUs. I would like to know STMicroelectronic's opinion regarding this issue. Is setting RDP level to 2 (disconnect debugging port permanently) a more secure way to protect the firmware from being dumped? Anything we can do to prevent piracy? I've read from some Chinese forum that the UID of a STM32 MCU can also be changed easily.

Chris

This topic has been closed for replies.

Tesla DeLorean

Guru

People with more time, equipment and experience are likely to find a weakness.

Tips, Buy me a coffee, or three.. PayPal VenmoUp vote any posts that you find helpful, it shows what's working..

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded