Lpc2000

Hi Richard,

You are correct in saying the firmware (meaning boot loader code) is
an important component of CRP.  In fact, it is a CRITICAL component.

One keeps the computer system secure by not running any code that has
not been certified.  The also applies to LPC device.

The boot loader code in 1.52 of 2105 is no different with respect to
its structure and vulnerabilities to that in 2.01 for 2148 that has
CRP features.  [I do not yet have a 2148, and hence I have not (yet)
put up my findings for 2148.]

I have made it clear in my totoria on Boot Loader Internals:

"It has never been the intention of this tutorial to make claims
about, or expose flaws in, the security features of the
microcontroller and/or the boot loader code."

However, as the boot loader critical to the CEP security has you have
pointed out, it is relevant.  It is not like apples and oranges, but
more like hands and gloves.

Kind regards,

Jaya

--- In lpc2000@yahoogroups.com, "rtstofer" <rstofer@p...> wrote:
>
> It is still an apples and oranges discussion.  My LPC2106 has ...
>
> ... The code 
> protection is ALL firmware and the boot code totally implements it.  
> Or, some hardware was added to the design of some devices (but not the 
> 2106) and the boot code takes advantage of the addition.
> 
> What shouldn't be done is mention any results of testing the 2106 and 
> CRP in the same document.  Or mention any version of the boot code 
> prior to version 1.60 because CRP wasn't implemented.
> 
> Richard
>