Page 23

EETE JUN 2015

also handles AES, SHA, elliptic-curve digital signal algorithm (ECDSA), and more. It’s a whole security subsystem, not just a hardwired crypto block. Which means it can do different things at different times. And it’s reprogrammable, so it’s upgradeable. And it’s really, really, fast. Because the configuration process is now managed by a programmable security processor instead of a simple state machine, you can load new firmware to update the configuration process itself. You might decide to load the on-chip ARM microprocessors first, then some FPGA logic. Or you might reverse the process. You could even randomize the order, making it different every time. It’s all up to you. Security features need to go far beyond just obfuscating the initial configuration, of course. There’s a PUF (physically unclonable function) inside each Stratix 10 chip that is, by definition, specific to that chip and that chip only. It’s essentially a random “birthmark” or serial number that allows you to bind software, hardware, or configuration bitstreams to a single FPGA device. The code or configuration that works on one chip won’t work on another. So even if the bad guys hack one of your designs, they haven’t hacked them all. Clever. You can also use the PUF to make keys invisible. Normally, key data is stored in fuses, like anything else on an FPGA. That means they are subject to X-rays, which can reveal the keys. But if you combine the key data with the PUF data, you get an original and unique result that doesn’t look like a key, and which works with only one device. Voila! Instant key security. All of these features, plus many others we haven’t mentioned, all add up to a “reduced attack surface.” We’ve eliminated the Fig. 2: The Secure Device Manager is tightly integrated with both logic resources in the FPGA sectors as well as with the embedded ARM processor subsystem. LEADING EDGE SENSORS SENSORS Gesture Sharp’s proximity, gesture, dust and distance sensors add a new dimension to your mobile devices, electronics, home appliances, and more. Use Sharp sensor solutions to extend the functionality of air purifiers, air conditioning systems, sanitary equipment, laptop PCs and robotic appliances. Sensors Solid State Relays Or give mobile phone users the convenience of hands-off operation by integrating the world’s first single-package gesture, ambient light, and proximity sensor from Sharp. Contact Sharp Devices Europe for more information about our innovative sensor portfolio today: sharpsde@sharp.eu Dust Sensors Distance Measuring Sensors www.sharpsde.com unintended features that hackers use to tease out the inners working of an FPGA. Gone is the metronomic predictability of a simple configuration bitstream. Gone are the hardwired crypto blocks. Gone is the generic key storage. Now we have an entire processor dedicated to nothing but security, designed from the ground up for nothing but security. From people who do nothing but security. It doesn’t get much more secure than that. But for all of its advanced features, the best part of Stratix 10 may be that it’s so easy to use that it doesn’t require a security expert. It’s got one built in.


EETE JUN 2015
To see the actual publication please follow the link above