security

Posted on by Jean-Luc Aufranc (CNXSoft) - 3 Comments on Aegis Secure WiFi Smart Deadbolt Works with Android/iOS Phones (Crowdfunding)

Aegis Secure WiFi Smart Deadbolt Works with Android/iOS Phones (Crowdfunding)

Aegis Secure WiFi Smart Lock

We previously wrote about smart lock systems that allow you to open your door with the help of your smartphone. Products covered including Xiaomi Sherlock M1 that only works with specific doors/locks, and K1 smart lock box that stores your keys in a rugged box meaning it works with all door mechanisms, but it does not seem particularly secure to me. BOSMA Aegis Bluetooth & WiFi smart deadbolt looks to potentially a more secure solution as it should work with any door, and complements your main lock which you may want to use when you are not at home for longer periods of time. Aegis smart deadbolt specifications: Connectivity – Built-in Bluetooth; WiFi via a WiFi connector shipped with Aegis Voice Assitant Integration – Google Home and Amazon Alexa Optional BOSMA Sentry smart doorbell with Storage – Up to 128GB via MicroSD card slot; cloud storage Video – 1080p video […]

Posted on by Jean-Luc Aufranc (CNXSoft) - 2 Comments on Nordic Semi nRF52 WiSoCs are Susceptible to Debug Resurrection using APProtect Bypass

Nordic Semi nRF52 WiSoCs are Susceptible to Debug Resurrection using APProtect Bypass

nRF52 APProtect

Nordic Semi nRF52 are popular wireless Cortex-M4 SoCs with Bluetooth 5.0 and 802.15.4 radios. APProtect (Access Port Protection) is a new security feature of nRF52 MCUs designed to enable readback protection and disable the debug interface. This is supposed to prevent an attacker to obtain a copy of the firmware that would allow him/her to start the reverse engineering process or access some sensitive data such as keys and passwords. It’s all good, except “LimitedResults” managed to bypass APProtect and permanently resurrect the debug interface on nRF52840-DK and a Bluetooth mouse. This requires physical access to the hardware and relies on a fault injection technique. The APProtect background and hacking technique are all explained in detail on LimitedResults blog post, but basically he first had to remove some capacitors and use a low-cost homemade voltage glitching system combines with an oscilloscope to try to locate a particular pattern into the […]

Posted on by Jean-Luc Aufranc (CNXSoft) - 1 Comment on UP Xtreme Smart Surveillance Combines Whiskey Lake SBC, Myriad X VPUs, and Video Management & Analytics Software

UP Xtreme Smart Surveillance Combines Whiskey Lake SBC, Myriad X VPUs, and Video Management & Analytics Software

UP Xtreme Smart Surveillance

We’re seeing more and more computer vision products with built-in artificial intelligence accelerated features like face recognition or object detection including AI cameras, facial recognition systems, and AI NVR systems. It’s great as a consumer because of less frequent and more accurate alerts in security camera systems but more worrying as a citizen due to mass surveillance. But the trend is here to stay, and AAEON has just announced the UP Xtreme Smart Surveillance solutions powered by UP Extreme Whiskey Lake SBC with either an Intel Core i5-8365UE or Intel Core i7-8665UE processor, as well as two Intel Movidius Myriad X VPUs using OpenVINO SDK. The system also leverages Milestone video management software (VMS) and SAIMOS video analytics software. Based on the photo above, the hardware looks to be UPX-Edge Embedded Computer which we previously covered in details at launch last December. Instead of hardware, the focus of Up Xtreme […]

Posted on by Jean-Luc Aufranc (CNXSoft) - No Comments on Advantech Edge AI Computer and PoE NVR Feature NVIDIA Jetson Xavier NX SoM

Advantech Edge AI Computer and PoE NVR Feature NVIDIA Jetson Xavier NX SoM

Advantech NVIDIA-Jetson-Xavier NX Edge AI Computer

Following the launch of NVIDIA Jetson Xavier NX SoM last year, we noted several third-party carrier boards and embedded PCs had been announced, and we expected more to come soon. Advantech has now unveiled two systems based on NVIDIA latest module with respectively  MIC-710AIX edge AI computer and MIC-710IVX NVR system equipped with eight PoE ports. MIC-710AIX edge AI computer Specifications: SoM – NVIDIA Jetson Xavier NX with 6-core NVIDIA Carmel ARM v8.2 64-bit CPU, 6MB L2 + 4MB L3 caches 384-core NVIDIA Volta GPU with 48 Tensor Cores 2x NVDLA deep learning accelerators System Memory – 8GB 128-bit LPDDR4x Storage – 16 GB eMMC 5.1 flash Storage – M.2 2280 Key-M socket for SSD; SD card socket Video Output – HDMI up to 3840×2160 @ 60 Hz Networking – 2x Gigabit Ethernet (RJ45) via Intel i210IT controller USB – 1x USB 3.0 host port, 1x USB 2.0 host port, […]

Posted on by Jean-Luc Aufranc (CNXSoft) - 17 Comments on We live in a Sad World – Purism Anti-Interdiction Services are (Somewhat) Popular

We live in a Sad World – Purism Anti-Interdiction Services are (Somewhat) Popular

Anti interdiction

A few years ago, we learned the NSA may intercept networking gear during shipping in order to modify it to provide backdoor access to the hardware, and it’s likely other national security agencies around the world also modify hardware on transit for spying purposes. I’d think most people would not really care, and only high-profile business and governmental targets may take preventive measures, but according to a recent post from Purism, their Anti-interdiction services are fairly popular among their customers. Wait… What? What is “anti-interdiction”. The only definition I know of is: “the action of prohibiting or forbidding something”. But it turns out there’s another definition that applies here: the action of intercepting and preventing the movement of a prohibited commodity or person. Purism laptops are not exactly prohibited, but you get the point, and the anti-interdiction services are meant, not to prevent, but detect interdiction of laptops or other […]

Posted on by Jean-Luc Aufranc (CNXSoft) - No Comments on Swissbit Secure Boot for Raspberry Pi Relies on MicroSD Card and optional USB Stick

Swissbit Secure Boot for Raspberry Pi Relies on MicroSD Card and optional USB Stick

Secure Boot Raspberry Pi

Swissbit secure boot solution for Raspberry Pi consists of an 8GB or 32GB “PS-45u DP” Micro SD card pre-loaded with their secure firmware, and offering the following key features: Security policies with flexible and configurable authentication Access protection with configurable retry counter Protects Raspberry Pi boot loader Encrypts user and boot code to protect license, know-how, and IP The boot image can be set read-only to prevent unauthorized modification Restricting the access to data on the card by various configurable security policies: PIN or USB or NET policy Use 8GB PU-50n DP USB stick as 2nd authentication for secure boot Works with Raspberry Pi 2 and 3B+ (I suppose Raspberry Pi 4 support should come soon enough) Note that we previously wrote about an open-source Raspberry Pi 4 UEFI+ACPI firmware to make the board SBBR-compliant and support features such as UEFI secure boot, but Swissbit secure boot is completely unrelated […]

Posted on by Jean-Luc Aufranc (CNXSoft) - No Comments on AI Network Video Recorder Combines Intel Atom X5 E3940 SoC, Two Myriad X VPUs, and Five Ethernet Ports

AI Network Video Recorder Combines Intel Atom X5 E3940 SoC, Two Myriad X VPUs, and Five Ethernet Ports

VPC-3350AI

AAEON seems to launch a new “AI Embedded Box PC” monthly either equipped with an NVIDIA Jetson module or a solution combining an Intel processor and a Myriad X VPU card. Here’s another one with AAEON VPC-3350AI AI edge computer powered by an Intel Atom X5 E3940 Apollo Lake processor, as well as two Myriad X VPUs for AI acceleration, and equipped with five Ethernet ports – four of which supporting PoE – to get video data from IP cameras or other networked video sources that makes it especially suitable as an AI network video recorder. VPC-3350AI specifications: SoC – Intel Atom X5-E3940 quad-core Apollo Lake processor @ 1.6 GHz / 1.8 GHz with 2 MB cache, 12 EU Intel UHD graphics; 9.5W TDP; Option for Celeron N4200/N3350 and X5-E3950) System Memory – Up to 8GB, DDR3L via 204-pin SODIMM socket Storage – 1x SATA port for 2.5″ drives AI […]

Posted on by Jean-Luc Aufranc (CNXSoft) - No Comments on Congatec conga-TR4 COM Express Module is Powered by AMD Ryzen Embedded SoC

Congatec conga-TR4 COM Express Module is Powered by AMD Ryzen Embedded SoC

conga-TR4 AMD-Ryzen V1000 COM Express

We’ve covered plenty of AMD Ryzen Embedded V1000-series SBCs, and some Ryzen Embedded mini PCs,  but so far, we had not written about any AMD Ryzen Embedded V1000 or R1000 system-on-module (SoM) or computer-on-module (CoM), partially because there aren’t many yet, and because we missed Advantech SOM-5871 CPU module earlier this year. But there’s now another option courtesy of Congatec with conga-TR4 AMD Ryzen Embedded COM Express module with consumer or industrial temperature range, and a choice of seven different processors. conga-TR4 COM Express module specifications: SoC (one or the other) AMD Ryzen V1807B quad-core processor @ up to  3.35 GHz with 2MB L2 cache, Vega 11 graphics; 35-54W TDP AMD Ryzen V1756B quad-core processor @ up to 3.25 GHz with 2MB L2 cache, Vega 8 graphics;  35-54W TDP AMD Ryzen V1605B quad-core processor @ 2.0 GHz with 2MB L2 cache, Vega 8 graphics; 12-25W TDP AMD Ryzen V1202B dual-core […]

EmbeddedTS embedded systems design