This post refutes the claim that researchers found a "backdoor" in ESP32 Bluetooth chips. What the researchers highlight (vendor-specific HCI commands to read & write controller memory) is a common design pattern found in other Bluetooth chips from other vendors as well, such as Broadcom, Cypress, and Texas Instruments. Vendor-specific commands in Bluetooth effectively constitute a "private API", and a company's choice to not publicly document their private API does not constitute a "backdoor".
  • ShadowRam@fedia.io
    631·
    1 day ago

    The dude that wrote this blog is a goof…

    defines backdoor as “relating to something that is done secretly

    effectively constitute a “private API”, and a company’s choice to not publicly document their private API

    Idiot thinks these are two different things…

    Are they are trying to argue that malicious intent is needed to define it as a back door?

    Moron…