TrustZone is the last hardware security mechanism integrated to ARMv8-M. This article presents some Fault Injection results achieved on Nuvoton M2351 (Cortex-M23), targeting MKROM crypto-functions and secure Code. ARMv8-M TrustZone TrustZone technology (TZ) is NOT really a NEW security concept. It has been available on ARM Cortex-A since more than 10 years now. The TrustZone…
Category: iot
Pwn MBedTLS on ESP32: DFA Warm-up
Introduction ESP32 is a System-on Chip (SoC) from Espressif Systems, launched in 2016. This SoC will be supported until 2028 (12 years longevity commitment) and has already been shipped more than 100 Millions times around the world. ARM MbedTLS is a the open source crypto-library from ARM, used in IoT devices. In my opinion, both…
Pwn the WIZ connected
Once again, let’s spend some money on Amazon. The WIZ lightbulb (TAOlight) Once delivered, I put the light in its socket and I download the WIZ application. I set the connection between my Wi-Fi and the device using an android smartphone. Everything is fine. Work as expected. The light is operational. The teardown Pretty simple….
Pwn the LIFX Mini white
The Device Bought on Amazon (30 euros). The lightbulb is plugged. LIFX app is installed on an Android smartphone. Wi-Fi connection is set. The lightbulb works fine. Wunderbar, easy setup. The Teardown Butcher mode activated: Work in progress: The most difficult is to clean the board and remove this paste. The Setup The major component…
Pwn the Tuya lightbulbs
These lightbulbs use the Tuya Cloud. So, once connected, they become a part of the Tuya ecosystem. WARNING: The FCMILIA lightbulb at the end of this article is not CE compliant, potentially very dangerous. I will not install this s**tty device in my room (just my opinion). The LYASI device Bought on Amazon 15 Euros….
Pwn the Xiaomi Yeelight
The Yeelight Bought on Amazon (20 euros). The Yeelight (Xiaomi) bulb is fitted. Yeelight app is installed and launched on a android smartphone to set the Wi-Fi connection. The password is entered into the app and the bulb is finally registered. Everything is fine. Light goes on. Time to focus on the hardware. The teardown…