In a somewhat surprising announcement yesterday, Bambu Lab announced they will release a new firmware for the X series, introducing an “authorization and authentication protection mechanism for the connection and control of Bambu Lab 3D printers.” P and A Series updates are also planned for future release. This is linked to the change we reported in the latest Bambu Studio 1.10.2 beta.
As of yesterday, X series owners can download a new beta version (01.08.03.00 or above), which will work with Bambu Studio 1.10.2 (or above) and Bambu Handy 2.17.0 (or above). The new firmware will exit beta on January 23rd.
This new firmware will introduce “authorization controls that require official authorization for critical printer operations.” Bambu Lab also clearly specifies that “unauthorized third-party software will be prohibited from executing critical operations.”
Bambu Lab says those changes mitigate the security risks of remote hacks and printer exposure. However, many Bambu Lab detractors (and fans alike) see this change as enshifttification. Giving Bambu Lab tighter control over what tools and third-parties can access Bambu Lab printers.
Here is what Bambu Lab says is “critical operations” and what is not:
Critical Operations That Require Authorization
The following printer operations will require authorization controls:
- Binding and unbinding the printer.
- Initiating remote video access.
- Performing firmware upgrades.
- Initiating a print job (via LAN or cloud mode).
- Controlling motion system, temperature, fans, AMS settings, calibrations, etc.
Operations That Do Not Require Authorization
The following actions will remain unaffected by the authorization mechanism:
- Sending status information from the printer (e.g., MQTT status push for tools like HomeAssistant).
- Starting a print job using SD cards.
- General operations outside the listed authorization controls.
This means that tools like XTouch and PandaTouch will be rendered obsolete unless a solution is found before this happens. HomeAssistant’s integration will also see its functionalities crippled, as retrieving the video feed is going to be restricted. There is no doubt that other third-parties will also be impacted.
Bambu Lab also mentions that slicer tools like OrcaSlicer won’t be able to use the Network Plugin anymore and will have to use a new tool called Bambu Connect. This new tool is currently available as a beta for Windows and MacOS, and a Linux version is under development. Currently, users will have to generate 3mf files with OrcaSlicer and send them to the printer using this new tool, making it much harder to use than Bambu Studio. However, Bambu Connect’s wiki page mentions that third-party software (like OrcaSlicer) can interact directly with it using a custom URL scheme. Yet, Bambu Lab didn’t mention this in their communication, and it is still adding friction to the end-user experience.
Finally, Bambu Lab mentions that if you use third-party tools to control your printer, you are better off not upgrading your printer.
Bambu Lab doesn’t explicitly mention LAN-Only-Mode and how it is affected, in its communication. However, they say that this new authorization mechanism will require initializing a print job via the cloud or LAN.
We really don’t know how to feel about those new changes. Even though the security aspect is essential, locking the printers behind closed-source Bambu software is not something many users want. This will hurt their reputation (which was not already great in that regard) and probably their sales, too.
If you feel as strongly as we do about this, we can only advise you to write to Bambu Lab to let them know how you feel about this: https://bambulab.com/en/my/support/general-inquiry