- Tue Jan 19, 2016 2:40 pm
#39254
There is also an additional UniqueID in the Flash itself. I don't know if it is doable to read it from ESP code since the SPI is probably busy doing the code caching, but on the other MCU, it can be read using 0x4B flash command, it returns a 64bits unique number.
- Tue Jan 19, 2016 7:49 pm
#39269
General observation... more context would help.
Are you trying to fingerprint the device externally (i.e., passive observation)? Or is this trusted computing, where you're trying to key a license or some such to the board it's running on? i.e., where your code is running on the chip and you're trying to solidly determine its identity.
I wouldn't trust a MAC address, as it's easily changed on most platforms. But if the platform can return a burned-in chip ID then that'd be the one to use.
Beyond that, realize that your code can be hacked to circumvent the validation process (or "read" any desired result). Trusted computing is a complex topic, generally requiring an on-board crypto locker that can only be challenged.
Cheers,
Richard
Are you trying to fingerprint the device externally (i.e., passive observation)? Or is this trusted computing, where you're trying to key a license or some such to the board it's running on? i.e., where your code is running on the chip and you're trying to solidly determine its identity.
I wouldn't trust a MAC address, as it's easily changed on most platforms. But if the platform can return a burned-in chip ID then that'd be the one to use.
Beyond that, realize that your code can be hacked to circumvent the validation process (or "read" any desired result). Trusted computing is a complex topic, generally requiring an on-board crypto locker that can only be challenged.
Cheers,
Richard
- Wed Jan 20, 2016 3:58 am
#39284
Hi
Trying to put together sufficient information over time to uniquelly identify the item. I'm not doing the cryptography bit - just data collection. So the MAC is based on the ID which does not change whereas the MAC can be updated. I have that. I have radio jitter, RSSI (signal strength) and the random number. I'm guessing I can check RTC ram on powerup, but I need more items that vary depending on the environment and use......
Trying to put together sufficient information over time to uniquelly identify the item. I'm not doing the cryptography bit - just data collection. So the MAC is based on the ID which does not change whereas the MAC can be updated. I have that. I have radio jitter, RSSI (signal strength) and the random number. I'm guessing I can check RTC ram on powerup, but I need more items that vary depending on the environment and use......
Peter Scargill - http://tech.scargill.net
