Loganaden Velvindron <[email protected]> writes: >I'm curious. Are those embedded devices or IoT type of appliances where the >firmware has a TLS library that will never be updated ?
Typically, yes. Many devices don't support remote firmware update, or need physical access to do it so it's never done, or will be decertified if you change the firmware so it's also never done. Some of these things also have 5-10 year development cycles, so there's an emphasis on getting it right the first time (as well as ensuring things like guaranteed supply of hardware for long periods, for example most embedded CPUs have 15-year supply longevity guarantees for this purpose, so if you were to start a new design today and have it done by 2028 you'd know the same chip would still be manufactured until 2038, at which point you buy up all the remaining production and stockpile it). Devices may gradually get updated over time as new units ship with newer firmware, but they're typically run alongside existing devices rather than replacing them. Peter. _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
