Hi,
For an IOT project I need to use MQTT with SSL.
In order to use SSL correctly i need to send to the BG96 module CA Certificate, Client Certificate and a Key.
But, if a hacker wants he can (by sending AT commands) read back all the uploaded files including certificate and key.
Is there a solution to prevent BG96 Module against certificate and key to be read back ?
It will be very helpfull.
Thanks
Because the radio network itself is protected by security, hackers cannot remotely read certificate files
Yes you’re right but i wasn’t talking about remote read but on the main board of the device.
If someone open the device and connect a UART to the BG96 lines then he can steal all the certificate and key.
Is there a solution to lock the files ?
I think your concern is unnecessary if compromising your device and obtaining your certificates and keys; Hackers need to invest more resources to attack your server, and such attacks can be easily detected by the server