Reverse engineering Bambu Connect: Difference between revisions
fix header, reword additional measures |
add cloud note |
||
| Line 88: | Line 88: | ||
The private key corresponds to the public key contained in the app's certificate. This certificate is sent to the printer, allowing it to verify the authenticity of the digital signature using the public key. | The private key corresponds to the public key contained in the app's certificate. This certificate is sent to the printer, allowing it to verify the authenticity of the digital signature using the public key. | ||
=== Additional security measures === | ===Additional security measures=== | ||
Bambu Connect also encrypts G-code commands and file paths of print operations using the printer's public key. This ensures that only the intended printer can decrypt the data, rather than all authenticated MQTT clients, adding another layer of security. | Bambu Connect also encrypts G-code commands and file paths of print operations using the printer's public key. This ensures that only the intended printer can decrypt the data, rather than all authenticated MQTT clients and the cloud, adding another layer of security. | ||
However, the potential security benefits are diminished because both the encrypted and plain text strings are sent at the same time, likely due to negligence or the need for backwards compatibility. | However, the potential security benefits are diminished because both the encrypted and plain text strings are sent at the same time, likely due to negligence or the need for backwards compatibility. | ||