本文探讨了Silicon Labs的防回滚功能,如何防止恶意加载过时签名代码利用已知漏洞,确保产品安全,抵御针对旧版本固件的威胁。
参考:https://www.silabs.com/security/anti-rollback
Adversaries may have knowledge of a security flaw found in an older firmware version and attempt to take advantage of it. The adversary attempts to load previously signed to re-open a closed security flaw. Silicon Labs anti-rollback feature makes it possible for developers to prevent the installation of signed code that is older than the current firmware version. This feature addresses a type of vulnerability whereby an adversary attempts to exploit a product through an outdated or flawed version of firmware.
Anti-Rollback-“防回滚”是为了防止有人恶意刷入旧版本固件,并利用旧版本固件中已知的漏洞来实现不法操作。
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
