To increase the security and integrity of the Q-SYS Ecosystem, Q-SYS 9.1.0 implements cryptographic code signing for Q-SYS Core processor firmware images to ensure their authenticity. Once a Core is updated to version 9.1.0, it will inspect subsequent firmware updates for a digital signature and, by default, will only install firmware that is signed by QSC. This protects the Core against illegitimate and potentially unsafe firmware.

Note that:

  • Firmware signing is a requirement for cloud-based firmware updates via Q-SYS Reflect Enterprise Manager. If you intend to remotely upgrade Q-SYS Core processors to future firmware versions, you must upgrade those Cores to version 9.1.0 first.
  • If you upgrade to version 9.1.0 and then desire to downgrade to a previous version, you must enable the Allow Legacy Unsigned Firmware (v9.0.1 or lower) option in Core Manager > Utilities. This option is disabled by default. If Access Control is enabled on the Core, only users with Administrator role permissions can enable this option. This option cannot be remotely enabled via Enterprise Manager.

Read more at file:///C:/Program%20Files/QSC/Q-SYS%20Designer%209.1/WebHelp/Index.htm