Menu
Wiki > Security

Security & Safety

Menu Wiki menu

General

How to get started

Write my first app

Publish my app

Library 2.0.0

Security

Troubleshooting

ntp time

GerrySnyderh

Motivational Enhancement Therapy

Achieve Your Goals with Motivati

OTA updates are done over an https internet connection to iotappstory.com. And as we all know the internet is a "dirty" place.

As quoted from the Arduino ESP documention:
Make your own risk analysis and depending on application decide what library functions to implement. If required, consider implementation of other means of protection from being hacked, e.g. exposing module for uploads only according to specific schedule, trigger OTA only be user pressing dedicated “Update” button wired to ESP, etc.

Also consider:

OTA process takes ESP’s resources and bandwidth during upload. Then module is restarted and a new sketch executed. Analyse and test how it affects functionality of existing and new sketch.

If ESP is placed in remote location and controlling some equipment, you should put additional attention what happens if operation of this equipment is suddenly interrupted by update process. Therefore, decide how to put this equipment into safe state before starting the update. For instance, your module may be controlling a garden watering system in a sequence. If this sequence is not properly shut down and a water valve left open, your garden may be flooded.

Never register new devices from whithin public Wifi networks. And you should consider using cfg_authenticate to password protect your config pages.

Added by


Onno Dirkzwager

Onno Dirkzwager

We use cookies on this website. View our cookie policy to find out how and why.

If you'd like to disable cookies on this device, please view our information pages on "How to manage cookies". Please be aware that parts of the site will not function correctly if you disable cookies.

By closing this message, you consent to our use of cookies on this device in accordance with our cookie policy unless you have disabled them.