| General > General Technical Chat |
| Experiences with TI BQ management IC’s when re-building laptop batteries ? |
| << < (5/8) > >> |
| azzido:
Hello guys, Working with BQ30z55 chip is not so simple. This family is probably the most secured gas gauge chip from TI. You can't change any parameter inside its data flash unless you unseal it first. The unseal mechanism works like this: You send a GetSeed request to the chip. The chip will send you 160 bit seed. Then you need to compute a SHA1 160bit key then send it to the chip for authentication. Battery EEPROM works is a very very old software, it can work maybe with some very old chips that used external eeprom. Since about 15 years ago almost all batteries use chips with built in DataFlash. It's a waste of time if you don't have SHA1 algo and passwords to generate keys. There are 2-3 guys in the world that can unseal such chips. |
| amyk:
--- Quote from: azzido on December 04, 2020, 10:45:56 pm ---Hello guys, Working with BQ30z55 chip is not so simple. This family is probably the most secured gas gauge chip from TI. You can't change any parameter inside its data flash unless you unseal it first. The unseal mechanism works like this: You send a GetSeed request to the chip. The chip will send you 160 bit seed. Then you need to compute a SHA1 160bit key then send it to the chip for authentication. Battery EEPROM works is a very very old software, it can work maybe with some very old chips that used external eeprom. Since about 15 years ago almost all batteries use chips with built in DataFlash. It's a waste of time if you don't have SHA1 algo and passwords to generate keys. There are 2-3 guys in the world that can unseal such chips. --- End quote --- That is supposing it is resistant to power analysis/clock glitching or timing analysis, or doesn't have any simple bugs like buffer overflows in the firmware to exploit; and seeing how some dedicated crypto modules are susceptible to such attacks, I don't think a battery DRM chip would be more secure. |
| torture:
Guys does anyone have BQEVSW for BQ30z55 R3 or R1. I made multiple requests to obtain it trough TI but they blabbing about that they can't provide it to civilians. Ilke it's something top secret. |O |
| amyk:
I linked it above... |
| torture:
Yes i installed that, but it supports only until firmware version 0.32v and bq30z55 r3 that is the cost common in laptop batteries has firmware version 0.35 and 0.36. So this version of BQEVSW is not compatible unfortunately. |
| Navigation |
| Message Index |
| Next page |
| Previous page |