www.design-reuse-embedded.com
You are here : design-reuse-embedded.com  > Security Solutions  > Other
Download Datasheet        Request More Info

Overview

Dedicated to providing ubiquitous trust across the ecosystem, the CryptoManager platform includes a Security Engine, which is a flexible root-of-trust implemented as hardware or software, for the secure provisioning, configuration, keying and authentication throughout the lifecycle of a device.

The CryptoManager Security Engine is an in-device root-of-trust offered as an embedded hardware core, or as a software agent that can be implemented as a protected element in a trusted OS or directly in the high-level device OS for the secure provisioning of keys and features throughout the device lifecycle. This provides flexible implementation options and allows the CryptoManager Infrastructure to securely communicate with the device to provision keys and manage feature configurations in the supply chain and downstream ecosystems.

Applications

The Security Engine hardware core is suitable for integration in application processors, modems, and other chipsets and features flexible design options that enable functionality, area, and power to be optimized for the required security level. This ensures maximum trust with minimal design impact. The core stores and protects sensitive key and configuration information in One Time Programmable (OTP) memory in the SoC. For feature management, the core manages rights delegation and feature activation based on permission settings.

Block Diagram

Features

  • Embedded root-of-trust enables trust to be established early in the manufacturing process, providing ongoing security and trust management throughout the lifecycle of the device.
  • Scalable and flexible trust assurance which provides a path from soft trusted endpoint implementations to hardware trusted endpoint implementations while assuring interoperability across all trusted connected smart devices
  • Portfolio of on-device software and drivers for seamless integration with CryptoManager secure provisioning and on-device application security services across a wide range of devices.
  • Flexible trust management services in support of both traditional Secure Element trust models and modern Host Card Emulation & Tokenization direct-trust models
  • Supports a range of implementation options to enable trusted provisioning services with maximum device coverage
  • Additional hardware-specific features
    • Entropic Array (EA) ??untermeasures to protect against silicon de-processing
    • Canary logic ??untermeasure for glitching attacks
    • Secure private memory management of OTP(or other NVM) memory
    • Secure API support for the provisioning of cryptographic data and feature activation controls
    • Asymmetric crypto capabilities: RSA 2048, PKCS #1, PSS,
    • Ferguson-Schneier key exchange
    • Symmetric crypto capabilities: AES128, AES256, and SHA256
    • Private bus for direct key delivery

Partner with us

Visit our new Partnership Portal for more information.

Submit your material

Submit hot news, product or article.

List your Products

Suppliers, list and add your products for free.

More about D&R Privacy Policy

© 2018 Design And Reuse

All Rights Reserved.

No portion of this site may be copied, retransmitted,
reposted, duplicated or otherwise used without the
express written permission of Design And Reuse.