![]() ![]() How? First, I read the CID from the SD card. I did manage to acquire an SD card with a custom CID for this experiment. ![]() This would trick the Pi into thinking it was reading a different CID than actually on the card and would prevent me from having to purchase an SD card with a unique CID in the first place. The second idea I had was to spoof the CID in software. ![]() If you get an SD card straight from the factory, some manufacturers will allow you to request specific CIDs. The first is to simply change the CID on the card. In order to test this, I had two ideas to get passed the CID check on the SD card. Is DougieLawson right? Did a big company waste their time in trying to build security for software meant for the Pi? Surely if you’re going to manufacture a product to be sold, you would have figured out this problem first. While I will not mention them here, one of the companies involved is a pretty huge and well-known company. They released both software on a stand-alone SD card where the software is tied to the card by the CID, as well as computers with Raspberry Pis as the motherboard, with the software tied to the board and not to the SD card through the board’s hardware ID. Interestingly enough, one company actually attempted this. In the linked forum post, user DougieLawson insists that securing the Pi is impossible and attempting something like this is a wasted effort. Therefore, if you simply check what the SD card’s CID is, then you can verify it is the original SD card and not an SD card copied. This is a read-only value which can identify unique SD cards. ![]() The most obvious idea people tend to have is a simple CID check. I have seen some forum posts of people trying to think up solutions to this problem. But what if you did not want it to be open? What if, for example, I wanted to write some software for the Pi and sell it? If Pis are meant to be open, this can mean your software will easily be stolen or copied, and after stealing your software, someone could just flash the software onto an SD card and load it on their own Pi. Raspberry Pis are meant to for tinkerers, learners, homebrew projects, etc. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
January 2023
Categories |