Modicon M580 - Integrity Verification of firmware files similar to EcoStruxure Control Expert

MaPundir · ‎2022-03-23

We should release firmware file's checksum list or hash, so that customer could check the firmware file integrity before loading it into their CPU, Communication Modules etc. at least for Modicon M580.

BevanWeiss · ‎2022-03-23

I think there should be multiple parts to this:

firmware signing, and trust (likely through a standard certificate / CA system), this would prevent the bootloader/firmware loader from writing an untrusted firmware to the end device
checksum for user confirmation before/after shipping firmwares around, to avoid wasted time/effort in moving around corrupt firmware files.

For some safety systems I've even seen a second step of the firmware loading. Where the end device does a checksum run across the 'as deployed' image, and presents this to the user for confirmation before going into operation. Having such a step does make automated firmware deployments problematic however..

Modicon M580 - Integrity Verification of firmware files similar to EcoStruxure Control Expert

EcoStruxure Control Expert - DTM Update Tool

Modicon M580 - Integrity Verification of firmware files similar to EcoStruxure Control Expert