This weeks report:
I didn't want to write it.
The client doesn't want to read it.
Had a few minutes to play on VR. Decided to go to on a haunted ride into an insane asylum and shoot some clowns. https://youtu.be/OsfRlh3Qr5M
Securely sending WiFi creds to an IoT device is an interesting problem.
Plenty of easy ways to do this insecurely, but as soon as you try and do it the right way you introduce complexity to the user, or a BOM and complexity increase to the device.
I can see why it's overlooked.
Right now I can see ESP32's Smart Config with AES being a sensible middle ground to use. Small inconvenience to the user, but manufacturer needs to resist the temptation to provision the same AES Key in every device.
A bunch of technomancers in the fediverse. Keep it fairly clean please. This arcology is for all who wash up upon it's digital shore.