<div dir="ltr">Rob - I hope you're right and it works out that simple.<div><br></div><div><div><span style="font-size:12.8000001907349px">The good news - I wonder if there will be a fire sale on the older, non-compliant stuff soon: </span></div><span style="font-size:12.8000001907349px">"All devices partially or </span><span style="font-size:12.8000001907349px">completely approved under the old rules cannot be marketed starting June </span><span style="font-size:12.8000001907349px">2, 2016 unless they meet the requirements of the new rules in all the </span><span style="font-size:12.8000001907349px">bands of operation. "</span><br><div><br></div><div><span style="font-size:12.8000001907349px"><span style="font-size:12.8000001907349px">The bad news - you can't firmware update the older gear, unless upgraded:</span></span></div><div><span style="font-size:12.8000001907349px"><span style="font-size:12.8000001907349px">"Starting June 2, 2016, permissive chang</span><span style="font-size:12.8000001907349px">es will not </span><span style="font-size:12.8000001907349px">be permitted for </span></span><span style="font-size:12.8000001907349px">devices approved under the old rules, unless they meet the requirements</span><br style="font-size:12.8000001907349px"><span style="font-size:12.8000001907349px">of the new rules."</span><br style="font-size:12.8000001907349px"><span style="font-size:12.8000001907349px"></span></div></div><div><span style="font-size:12.8000001907349px"><br></span></div><div><span style="font-size:12.8000001907349px">I'd love to find out how the FCCs plans to enforce this one.</span></div><div><span style="font-size:12.8000001907349px"><br></span></div><div><span style="font-size:12.8000001907349px">73 Martin W6MRR</span></div><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Thu, Sep 3, 2015 at 9:48 AM, Rob Seastrom <span dir="ltr"><<a href="mailto:rs@seastrom.com" target="_blank">rs@seastrom.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><br>
Fifteen years ago give or take, there was a big kerfluffle about DeCSS<br>
and DVD ripping. Today's code signing algorithms may be stronger than<br>
content scramble system, systems today often have TPMs built in... but<br>
keys that can generate "signed" binaries will be leaked, tribal<br>
knowledge will accumulate about which rev levels of which devices are<br>
"the good ones to have", and eventually we're back to the ecosystem of<br>
today, but with the added complicating dimension of crypto.<br>
<br>
In short, the Internet routes around damage. If the FCC cares to<br>
waste their cycles and taxpayer dollars here, it won't work out well<br>
for them.<br>
<br>
-r<br>
<br>
<br>
Martin <<a href="mailto:dcmk1mr2@gmail.com">dcmk1mr2@gmail.com</a>> writes:<br>
<br>
> This extends beyond WiFi routers - it's anything with a Part 15 Certification. Phones with WiFi, IOT, ...<br>
><br>
><br>
><br>
> The FCC seems to be suggesting that manufacturers use a bootloader that looks for signed binaries. Â Â <br>
<span class="">><br>
><br>
><br>
> The comment deadline has been extended to Oct<br>
</span>> 9. [[<a href="https://www.federalregister.gov/articles/2015/09/01/2015-21634/extension-of-time-for-comments-on-equipment-authorization" rel="noreferrer" target="_blank">https://www.federalregister.gov/articles/2015/09/01/2015-21634/extension-of-time-for-comments-on-equipment-authorization</a>]]<br>
<span class="">><br>
><br>
><br>
> Martin W6MRR<br>
><br>
><br>
><br>
> On Thu, Sep 3, 2015 at 8:18 AM, Artie Lekstutis <[[<a href="mailto:Artie@lekstutis.com">Artie@lekstutis.com</a>]]> wrote:<br>
><br>
> Has anyone else heard of this? Is this accurate? Bad news if it is. This would probably<br>
> exclude the use of Broadband-Hamnet (and DD-WRT).<br>
><br>
> This is the Hackaday article that first brought my attention to this. Their stuff can be a bit<br>
> fringe, especially their opinions, but is usually somewhat accurate:<br>
</span>> [[<a href="http://hackaday.com/2015/09/02/save-wifi-act-now-to-save-wifi-from-the-fcc/" rel="noreferrer" target="_blank">http://hackaday.com/2015/09/02/save-wifi-act-now-to-save-wifi-from-the-fcc/</a>]]<br>
><br>
> Hereâ(TM)s a direct link to the FCC website that specifically identifies DD-WRT as an example of<br>
<span class="">> needing to be excluded from all firmware updates for future regulatory compliance:<br>
> [[<a href="https://apps.fcc.gov/kdb/GetAttachment.html?id=1UiSJRK869RsyQddPi5hpw%3D%3D&desc=594280%20D02%20U-NII%20Device%20Security%20v01r02&tracking_number=39498" rel="noreferrer" target="_blank">https://apps.fcc.gov/kdb/GetAttachment.html?id=1UiSJRK869RsyQddPi5hpw%3D%3D&desc=594280%20D02%20U-NII%20Device%20Security%20v01r02&tracking_number=39498</a>]]<br>
><br>
</span>> Except that it is conveniently unavailable now until the end of the comment period while âoethe<br>
> FCC IT Team will be working to upgrade and modernize the FCCâ(TM)s legacy infrastructureâY\... I<br>
<span class="">> was able to read it yesterday. Luckily I have a cached copy. I'm reluctant to distribute it even<br>
> though it's an FCC document that was published publicly. If you can find a copy, see<br>
</span>> âoeII. SOFTWARE SECURITY DESCRIPTION GUIDE: Third-Party Access Control: 2âY\...<br>
<span class="">><br>
> If what they are saying is true- this will exclude many very useful projects from being flashed on<br>
> future commercial hardware of any type. This would include DD-WRT, OpenWrt, SECN,<br>
</span>> Broadband-Hamnet, HSMM-MESH, etcâ¦<br>
<span class="">><br>
> This in fact degrades security as it means you are now entirely dependent on the WiFi device<br>
</span>> manufacturer patching vulnerabilities, which they often donâ(TM)t do or do very slowly, especially<br>
<span class="">> on older hardware. Options like DD-WRT usually address such vulnerabilities very quickly, if they<br>
> ever had them in the first place.<br>
><br>
</span>> I havenâ(TM)t made a public comment yet. Still trying to understand the details.<br>
<span class="">> [[<a href="https://www.federalregister.gov/articles/2015/08/06/2015-18402/equipment-authorization-and-electronic-labeling-for-wireless-devices" rel="noreferrer" target="_blank">https://www.federalregister.gov/articles/2015/08/06/2015-18402/equipment-authorization-and-electronic-labeling-for-wireless-devices</a>]]<br>
><br>
> Thanks,<br>
> Artie Lekstutis<br>
> KC2MFS<br>
> 73<br>
> _______________________________________________<br>
> Tacos mailing list<br>
> [[<a href="mailto:Tacos@amrad.org">Tacos@amrad.org</a>]]<br>
</span>> [[<a href="https://lists.amrad.org/mailman/listinfo/tacos" rel="noreferrer" target="_blank">https://lists.amrad.org/mailman/listinfo/tacos</a>]]<br>
<div class="HOEnZb"><div class="h5">><br>
><br>
><br>
><br>
> _______________________________________________<br>
> Tacos mailing list<br>
> <a href="mailto:Tacos@amrad.org">Tacos@amrad.org</a><br>
> <a href="https://lists.amrad.org/mailman/listinfo/tacos" rel="noreferrer" target="_blank">https://lists.amrad.org/mailman/listinfo/tacos</a><br>
</div></div></blockquote></div><br></div>