Secure extension of FPGA general purpose processors for symmetric key cryptography with partial reconfiguration capabilities

Abstract : In data security systems, general purpose processors (GPPs) are often extended by a cryptographic accelerator. The paper presents three ways of extending GPPs for symmetric key cryptography applications. Proposed extensions guarantee secure key storage and management even if the system is facing protocol, software and cache memory attacks. The system is partitioned into processor, cipher, and key memory zones. The three security zones are separated at protocol, system, architecture and physical levels. The proposed principle was validated on Altera NIOS II, Xilinx MicroBlaze and Microsemi Cortex M1 soft core processor extensions. We show that stringent separation of the cipher zone is helpful for partial reconfiguration of the security module, if the enciphering algorithm needs to be dynamically changed. However, the key zone including reconfiguration controller must remain static in order to maintain the high level of security required. We demonstrate that the principle is feasible in partially reconfigurable field programmable gate arrays (FPGAs) such as Altera Stratix V or Xilinx Virtex 6 and also to some extent in FPGAs featuring hardwired general purpose processors such as Cortex M3 in Microsemi SmartFusion FPGA. Although the three GPPs feature different data interfaces, we show that the processors with their extensions reach the required high security level while maintaining partial reconfiguration capability.
Type de document :
Article dans une revue
ACM Transactions on Reconfigurable Technology and Systems (TRETS), ACM, 2012, 9 (4), pp.27. 〈10.1145/2362374.2362380〉
Liste complète des métadonnées

Littérature citée [21 références]  Voir  Masquer  Télécharger

https://hal-ujm.archives-ouvertes.fr/ujm-00755152
Contributeur : Nathalie Bochard <>
Soumis le : mardi 20 novembre 2012 - 15:29:30
Dernière modification le : jeudi 11 janvier 2018 - 06:20:35
Document(s) archivé(s) le : jeudi 21 février 2013 - 12:20:38

Fichier

ACM_TRETS_2012.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

Collections

Citation

Lubos Gaspar, Viktor Fischer, Lilian Bossuet, Robert Fouquet. Secure extension of FPGA general purpose processors for symmetric key cryptography with partial reconfiguration capabilities. ACM Transactions on Reconfigurable Technology and Systems (TRETS), ACM, 2012, 9 (4), pp.27. 〈10.1145/2362374.2362380〉. 〈ujm-00755152〉

Partager

Métriques

Consultations de la notice

196

Téléchargements de fichiers

443