Hello!

I'm working on a project implementing my own OTA application similar to simple_ota example found on Github. I was wondering about how can I check whether the certificate used is expired, and I found this thread on this forum: https://esp32.com/viewtopic.php?t=7585 . I understand that by ...

Hello!

I have a project on enabling and discussing ESP32's security functions and I was wondering whether once secure boot enabled, does ECDSA key can be changed. I have an assumption that the answer is NO, with some explanations I consider as correct, but I'd need confirmation or correction, as I ...

Hi ESP_Angus,

wow, thank you for the fast and detailed explanation, that makes a lot of things clear. However, there are two things I don't understand. In "reflashable method" you can also generate a new bootloader digest and reflash the new bootloader and digest together. Is there any other usage ...

Hello!

I activated secure boot with Reflashable mode on my device and I was wondering whether I can change it to One-Time Flash or at least emulate it by making the digest and bootloader write-protected on the flash. If I understand correctly, this is the main difference between the two methods ...