balena-ci
commented
4 years ago [xginn8] This issue has attached support thread https://jel.ly.fish/#/support-thread~85b17d4f-7cb8-4e7c-8942-b1b4c1e94dc7
Open simplelife2010 opened 5 years ago
balena-ci
commented
4 years ago [xginn8] This issue has attached support thread https://jel.ly.fish/#/support-thread~85b17d4f-7cb8-4e7c-8942-b1b4c1e94dc7
There is a need to secure field devices against misuse. Trying to implement hardware based tamper prevention, filesystem encryption, TPMs etc. limits the hardware portfolio and increases cost.
How about adding software based (configurable) checks that signal potential tampering so we can react and isolate the device if necessary. Without having a lot of experience in this field, ideas could be:
I am not sure if implementing this within diagnostics is the best option, but it is an imaginable option.