Hello!

I am working on compiling information for the cybersecurity standard EN 18031-1. I am wondering if there are any documentation from Espressif about the security level of the espsecure commands to generate a secure boot signing key and a flash encryption key?

More specifically, I am running ...

Are you only concerned with flash or actually (also) asked about RAM?

Good question - "a memory map where the code and data is located inside the device" (which is what I am being asked for) is something I interpret as flash memory.

Hello, I have been asked to compile a memory map for an ESP32 project. I understand how the flash memory is laid out for my project. However, there is another aspect I have been asked to include in this memory map: "if each memory region is readable, writeable and/or executable".

My question is ...

Hello.

I have a project built using an ESP32 with Micropython. I am relying on an external MQTT broker - namely mqtt.thingsboard.cloud. How I have currently set up the device is that it only trusts the root certificate of mqtt.thingsboard.cloud. This certificate is provided by the company hosting ...

Hello,

working on building a SBOM for a piece of software. The software uses a MicroPython implementation by the company PyCom.

In their source there is a file called "analog.c", which is credited "Copyright 2015-2016 Espressif Systems (Shanghai) PTE LTD".
However, I can not find the original ...

Hello,

I am working on a security overhaul before a device hits production.

The device runs MicroPython.

Currently, Secure Boot (v1) is enabled on the device.

The device stores private connection keys as on the flash, that are written to the flash on first boot. I.e. some pseudocode would be ...