I am looking ways to encrypt data that is transmitted over the USB link to the HE910 module for transmission.
One way to possible achieve this is by having the DTE encrypt and send data to a Pytho application running on the HE910. The Python application receives the encrypted data. Decrypts it and then uses SSL socket send it over to the server.
All this sounds simple but there is no support for Crypto modules on HE910.
So the question is – how can I secure the data transmission over the USB link to HE910 for transmission over SSL socket?
Please let me know.
You can put in place a crude password protection algorithm on data but if you are going to use Python there isn’t any 100% proof method of protection if the end user has access to module’s AT commands ports and can tamper the Py application files.
Is there an example that I can refer on your suggested approach?
Also, I don’t understand why using Python would not be 100% proof method? I was thinking of using Crypto libraries (AES) to encrypt the data before sending it over the USB and on the module use same Crypto Algorithm to decrpyt the data. Following which the decrypted data would be sent over the SSL socket. The only issue with this approach is that HE910 module does support any Python Crypto libraries. Question is – will Telit be able to support Python’s Crypto libraries on the HE910 module?
No there aren’t crypto libraries in HE019 Py; for a discussion about IP protection read here.
Reference to the post in your response is in regards to software protection. We are looking for data protection.
The fact that there is no crypto libraries on HE910 py leads to a situation where data transferred (AT commands, etc) over the USB cannot be encrypted.
Is there any way to encrypt the data transfer to and from HE910 over the USB?
This would be a requirement for a solution to provide end-to-end data encryption.
Just google search for “python simple encryption” and you’ll find a lot of ideas.
Thank you for your guidance.
Well, this is a bit off-topic, but has anyone tried to use the SIM as a crypto engine?
I guess there are ways to submit first a key to the SIM card and then your data for encryption, and finally read back the encrypted data. Probably a limited amount of data, but chaining small chunks you could maybe encrypt larger amounts of data. Slooow, likely, but strong encryption 🙂
A bit of intro: The Secret Life of SIM Cards 🙂
Thanks Cosmin, fantastic!
Hit enter to search or ESC to close
Knowledge Base & Download Zone