ETSI Releases EN 303 645 IoT Security Standard for Consumer Devices

ETSI EN 303 645 IoT Security Standard

To be successful over the long term, IoT must be secure, at least that’s what people say. So in 2016, UL introduced the UL 2900 IoT security standard, but it set the bar so high, that nobody ended up using it. and the UL IoT Security Rating System was introduced last year with various rankings for IoT devices security from bronze to diamond. The rating system was based on various countries/regions standard including ETSI TS 103 645 standard for the European market which defined requirements in terms of software updates, data & cryptography, logical security, system management, privacy protection, protocol security, and processes and documents. The ETSI Technical Committee on Cybersecurity (TC CYBER) has now released an update to TS 103 645 IoT security standard with ETSI EN 303 645 “that establishes a security baseline for internet-connected consumer products and provides a basis for future IoT certification schemes”. There are thirteen cybersecurity provisions – aka the 13 commandments of IoT …

Support CNX Software – Donate via PayPal or become a Patron on Patreon

Software Update Brings Subscription based Functions-on-Demand to BMW Cars

BMW Digital personalization functions on demand

Cars are getting smarter and safer, and autonomous driving looks promising but may take longer than expected, as many shortcomings still have to be worked out. In any case, that means most new cars will be connected to the Internet in the future, especially with the launch of 5G and V2X solutions. This will bring benefits and new business models, as BMW showcased at the recent BMW Connected Car Beta Days 2020. BMW lists a long list of new advantages of an upcoming software upgrade with improved BWM maps, connected parking to help you find parking space, connected charging to “make mobility more sustainable and innovative”, BMW Digital Key that turns an iPhone into a secure digital vehicle key,  wireless support of Google’s Android Auto, and the BMW Intelligent Personal Assistant has received some improvement with the virtual character now turns towards the person talking and can distinguish between addressing the driver and the passenger. Some updates look genuinely useful, …

Support CNX Software – Donate via PayPal or become a Patron on Patreon

Interview – NXP Linux BSP and Timesys Vigiles Maintenance Service & Security Updates

NXP Linux BSP Maintenance Workflow

I’ve been interviewing Ed White, Manager of NXP’s Professional Support and Engineering Services, and Akshay Bhat, Director of Engineering, Security Solutions at Timesys by email to find out more about NXP Linux BSP development process, and how Timesys can help to keep it updated and secure with its Vigiles service. Q1. CNX Software readers recently discussed NXP Linux BSP update status. One person specifically noted Linux 4.14.98 used in the BSP was well over a year old, and there were various opinions about the topic, including one person suggesting NXP only provides a stable BSP and it was the ultimate responsibility of the customer to merge Linux security patchsets. Could you explain the typical development process for NXP Linux BSP, and why the company chose not to update the patchsets regularly? Answer: The kernel strategy for NXP’s i.MX family BSPs closely follows the annual cadence of kernel.org’s LTS kernel selection. As soon as kernel.org establishes the next official LTS kernel …

Support CNX Software – Donate via PayPal or become a Patron on Patreon

New Tech Vocabulary for 2020 Could Break Software Compatibility

2020 has been an interesting year with plenty of disruption to most people lives, and political changes. Now it appears some of those changes will affect technology, and by that, I mean things like changes to datasheets and even source code. I’ve been seen a lot of talks about slave/master terminology on Twitter, blogs, and CNET is now reporting Twitter Engineer will remove racially charged technical terms from the source code and interface. Whether you are a veteran or just graduated last year, you may have to learn a new set of vocabulary to understand datasheets and code. Twitter’s senior management is allegedly backing the effort for the changes. This goes beyond racially charged terms, but if it’s the world we’re going to live in so be it. Some changes in the datasheet may not be a big issue, except for the initial confusion, but it may become problematic when changes happen in the source code as it may break …

Support CNX Software – Donate via PayPal or become a Patron on Patreon

Looking for an Android Phone with Long Term Support? Fairphone 2 Gets Android 9 Five Years After Launch

Fairphone 2 Android 9

When you use a laptop or computer with Windows or Linux, you’re pretty much assured to get regular security updates. That’s partially why I prefer to do things like online banking on my computer rather than a phone, despite banks pushing for mobile apps. Why? Because most mobile phones get limited support. I selected an Android One phone, namely Xiaomi Mi A2, because I would get updates for at least 18 months. When you think about it it’s quite pathetic, but that’s about the best Android has to offer. It’s quite better on Apple side with updates for 4 to 5 years for iPhones, while Google Pixel phones are said to get updates for about 3+ years. How you deliver updates also matter, as I recently heard Samsung users complain about frequent updates, while they had somehow no such complaint about their iPhone. But if you’re not quite ready to make the jump to iPhones, and prefer the openness of …

Support CNX Software – Donate via PayPal or become a Patron on Patreon

Linux 5.7 Released – Main Changes, Arm, MIPS and RISC-V Architectures

Linux 5.7 Changelog

OK… I’m a bit late on that one. Linus Torvalds released Linux 5.7 last week: So we had a fairly calm last week, with nothing really screaming “let’s delay one more rc”. Knock wood – let’s hope we don’t have anything silly lurking this time, like the last-minute wifi regression we had in 5.6.. But embarrassing regressions last time notwithstanding, it all looks fine. And most of the discussion I’ve seen the last week or two has been about upcoming features, so the merge window is now open  and I’ll start processing pull requests tomorrow as usual. But in the meantime, please give this a whirl. We’ve got a lot of changes in 5.7 as usual (all the stats look normal – but “normal” for us obviously pretty big and means “almost 14 thousand non-merge commits all over, from close to two thousand developers”), So the appended shortlog is only the small stuff that came in this last week since …

Support CNX Software – Donate via PayPal or become a Patron on Patreon

DEVICE.FARM Generates Raspbian/Armbian Docker Images for about 100 Arm Linux SBCs

Last year, I reviewed BalenaOS and BalenaCloud on Raspberry Pi CM3L based BalenaFin hardware. The solution generates OS images with docker support in order to easily manage and update a fleet of devices remotely over a web interface or client program. Balena.io supports over 60 boards either officially, or thanks to the work of the community, but Pavel Burgr is developing an alternative with DEVICE.FARM supporting close to 100 Arm SBC’s including Raspberry Pi boards, and most Armbian supported Arm SBC’s. DEVICE.FARM is still beta, but the MVP (Minimum Viable Product) version of the website provides: Customized images for supported boards (currently 94 boards) Preinstalled docker Secure remote access to the device’s docker end-point Secure remote access to the device’s services exposed by containers This is functional, but bugs are likely, and documentation still needs to be finalized. I don’t have a board with me, but I tried to generate an image for Orange Pi Zero SBC. Once you click …

Support CNX Software – Donate via PayPal or become a Patron on Patreon

Getting Started with Qoitech Otii Developer Tool using ESP8266 and Raspberry Pi 4 Boards

Qoitech Otii Arc Raspberry Pi 4

Last month, I received Qoitech Otii Arc power supply, power meter, and DAQ unit that aims at helping hardware and software engineers develop energy-efficient products. I’ve now had time to test the unit with an ESP8266 board and Raspberry Pi 4 SBC, so I’ll show how to get started and my overall experience with the hardware and program. Requirements and Initial Setup The unit takes a 9V power supply or micro USB adapter as power input, but power output is done through banana plugs. I did not have any cables with banana plugs so I bought one on eBay for about $5 shipped. This cable is really convenient with output to USB (female connector), crocodile clips, and hook clips. However, as we’ll see below it may not be suitable for all types of loads, and you may have to make your own with a higher rated cable. You’ll need to download Otii program available for Windows 10 / 7 64-bit, …

Support CNX Software – Donate via PayPal or become a Patron on Patreon