Security Features¶
The CANlink® mobile 10000 has implemented the following security features.
| Area | Feature | Benefit |
|---|---|---|
| Secure communication - system controller (MCU) | Flash read-out protection and removal of Serial Wire Debug (SWD) interface. | Prevents read-out of code and thereby protects against hacking of the software. |
| Secure communication - system controller (MCU) | Removal of debug functionality. | Removes unnecessary functionality in production. |
| Secure boot - main MPU/MCU (MP1) | Restriction of bootloader to specific devices. | Enhanced security by reducing the devices for booting. |
| Secure communication - main MPU/MCU (MP1) | Peripheral isolation of interfaces. | Enhanced reliability. |
| Secure boot - main MPU/MCU (MP1) | OTP lock (closing the device) and PKH check for trusted boot chain, i.e. check of signed software. | Enhanced security by booting only verified software and thereby preventing the installation of malware. |
| Secure boot - main MPU/MCU (MP1) | Trusted boot chain for verifying software up to the second stage bootloader (SSBL). | Implements basic secure boot by securing it up to (including) the SSBL. |
| Main MPU/MCU (MP1) | Disable JTAG port for MP1. | Prevents physical attacks on the device. |