I am ready to deploy my NETMF applicaiton to several cerberus boards, I require to sign the application to protect from updates.
Up to now I am able to create the Hex file from MFDeploy using the “Target -> Application Deployment -> Create Application Deployment” option and copy the hex file to the other boards, but the key pair seems to have no effect on the cloned boards, because the app always runs even without the keys being installed on the new boards.
I really could not find a tutorial with the steps required to sign the application and the use of key pairs for the cerberus. Can someone point me in the right direction to sign the application in the cerberus boards?
@ Ninja, Is your objective to prevent people from updating the firmware whatsoever? If so then ultimately that’s not possible. Once they can get to the JTAG headers they can flash over the entire micro framework. You can only really prevent them from copying the program off the device.
So it does not stop them from downloading the application from the device. I know the micro controllers have that feature; Gus, how do you keep people from cloning the GHI.Premium Libraries?
@ Gus - Do you suggest a workaround to protect IP from a cerb-family board?
Would it be possible to setup FLASH_OPTCR register inside the application using the managed GHI.OSHW.Hardware.LowLevel register write function, to try to inhibit the chip from being copied, setting up write protection only if application is compiled in release mode?