Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

Should final products ship with debugging features disabled?

debugging disabled features final products ship
0
Posted

Should final products ship with debugging features disabled?

0 CommentsAdd a Comment

1 Answer

0

Barnaby Jack: Ideally, yes. Many vendors will remove resistors leading from the JTAG port, or in the case of the ARM architecture, may drive the TRST pin low. Neither of these methods is sufficient to disable the JTAG functionality. Resistors are easily replaced, and pins can be pulled high. The ideal choice is to remove the JTAG traces altogether. The main argument against removing JTAG and UART ports is the cost factor. Manufacturing boards is expensive, and the cost involved to manufacture both prototype and production boards may not be warranted. Debugging functionality may be needed in some production devices, for technicians to service the device, for example. If the JTAG port is removed, it’s certainly a roadblock for an attacker, but it will not stop someone who is determined to have access to the code — other methods such as tapping data traces and re-socketing chips can be employed. In the end it all boils down to writing secure software. If the software on the device is vul

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123