Originally posted by charlesr
The only way to be totally safe with firmware updates is to give a device two flash banks and write-protect one of them so that it can't be modified. That way if the first one gets corrupted by a bad flash it can switch to the protected one and use it to reflash the other one.
The trouble is that twice the flash banks are twice the price, and since the likelihood of a bad flash is actually very slim they tend to risk it and just put the one in. It's also possible to do stuff like run the firmware from a hard drive or something (in which case it's technically not firmware anymore), but that's much slower than from flash memory.
Comment