Tweeting? Please use hashtag #FTF2011. Freescale on Facebook Tag yourself in photos and upload your own!

Similar documents
Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, ColdFire+, C-Ware, the Energy Efficient Solutions logo, Kinetis,

Wai Chee Wong Sr.Member of Technical Staff Freescale Semiconductor. Raghu Binnamangalam Sr.Technical Marketing Engineer Cadence Design Systems

Choice of 2 technology platforms. Flexibility in Timing. Flexibility in Teams

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, ColdFire+, C- Ware, the Energy Efficient Solutions logo, Kinetis,

Challenges for Next Generation Networking AMP Series

Using Cryptographic Service Engine 2 (CSE2)

DDR Memory controller fundamentals review

Overview of Qorivva family and MPC564xB/C (5 minutes) Smart peripherals for lighting (20 minutes) Gateway communications and questions (5 minutes)

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, C-Ware, t he Energy Efficient Solutions logo, mobilegt, PowerQUICC,

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, C-Ware, the Energy Efficient Solutions logo, mobilegt, PowerQUICC,

Overview of Mechanical Reliability Testing Board-Level Temperature Cycling Monotonic Bend Testing Drop/Shock Testing References and Comments

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, C-Ware, t he Energy Efficient Solutions logo, mobilegt, PowerQUICC,

P1010RDB-PB Quick Start Guide

Freescale, the Freescale logo, AltiVec, C- 5, CodeTEST, CodeWarrior, ColdFire, ColdFire+, C-Ware, the Energy Efficient Solutions logo, Kinetis,

OpenSDA on TWR-KW2x. User s Guide Rev 1.1

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, C-Ware, t he Energy Efficient Solutions logo, mobilegt, PowerQUICC,

Jan ps/site/prod_summary.jsp?code=r DMK30&fsrch=1&sr=1

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, ColdFire+, C-Ware, the Energy Efficient Solutions logo, Kinetis,

Freescale MKW40Z IEEE Software Quick Start Guide

CodeWarrior U-Boot Debugging

Bharat Bhushan, Stuart Yoder

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, ColdFire+, C-Ware, the Energy Efficient Solutions logo, Kinetis,

MPC5748G Gateway, HSM and Secure OTA Update

Getting Started with CSEc Security Module

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, C-Ware, t he Energy Efficient Solutions logo, mobilegt, PowerQUICC,

New VLE Instructions for Improving Interrupt Handler Efficiency Robert Moran Applications Engineer Microcontroller Solutions Group

Mask Set Errata for Mask 2N27B

Quick Start Guide for FRDM-KL05Z

Quick Start Guide for FRDM-KL46Z Rev 1

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, C-Ware, t he Energy Efficient Solutions logo, mobilegt, PowerQUICC,

Quick Start Guide for the Freescale Freedom Development Platform FRDM-KL43Z

Stéphane Gervais-Ducouret

Component Development Environment Getting Started Guide

Effectively describe, at a high level, NetComm Software for DPAA-based devices

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, ColdFire+, C- Ware, the Energy Efficient Solutions logo, Kinetis,

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, C-Ware, the Energy Efficient Solutions logo, mobilegt, PowerQUICC,

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, ColdFire+, C- Ware, the Energy Efficient Solutions logo, Kinetis,

Quick Start Guide for FRDM-KL46Z Rev 1

Motivation for an Intelligent Battery Sensor. Introduction to MM912J637 Intelligent Battery Sensor. Competitive Advantages of MM912J637

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, ColdFire+, C- Ware, the Energy Efficient Solutions logo, Kinetis,

Problem FatFS architecture Demonstration Benchmark Closing

Tom Deitrich. Senior Vice President and General Manager. February 2013

MC34708TRN Rev /1/2011

Weibo? Please use hashtag #FTF2011# Freescale on Kaixin Tag yourself in photos and upload your own!

Weibo? Please use hashtag #FTF2011# Freescale on Kaixin Tag yourself in photos and upload your own!

Getting Started with Qorivva Fast

Using the Xtrinsic FXOS8700CQ Command Line Interface Software

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, ColdFire+, C-Ware, the Energy Efficient Solutions logo, Kinetis,

Xtrinsic Touch Sensing Software 2.0 Add touch. With flexible libraries.

Mask Set Errata for Mask 3N86B

Qorivva MPC5744P Evaluation Board 144LQFP Expansion Board User s Guide Barbara Johnson Applications Engineering

CodeWarrior Development Studio for Advanced Packet Processing v10.3.1

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, C-Ware, Energy Efficient Solutions logo, Kinetis, mobilegt, PowerQUICC,

Panel Session: Smart Metering & Smart Grid Solutions for the Modern World

Michael Jennings. June 2011

Production Flash Programming Best Practices for S32K1xx MCUs

Jürgen Frank. Automotive Sr. Systems Engineer. September 2013

Rapid Software Development on 32-Bit Automotive MPC56xx Family of MCUs

Market Trends and Challenges in Vehicle Security

S12Z MagniV LIN Bootloader

Introduction S08P Peripherals deep-dive. CW IDE Setup. S08P V6 Flash and EEPROM FlexTimer ADC Watchdog Timer TSI ACMP SCI, SPI,IIC

QCVS Frame Distributor Wizard User Guide

M2351 Security Architecture. TrustZone Technology for Armv8-M Architecture

Kinetis Brand Overview Kinetis K Series Overview New Kinetis Family Members Kinetis Feature Overview Enablement Questions

How to Reduce SoC Power when Running M4 with A53 on i.mx8m

Y.H. Cheng. Mohit Arora Sr. Systems Engineer and Security Architect. Application Engineer. Automotive and Industrial Solutions Group(AISG)

Window Lift and relay based DC motor control Reference Design Using the S12VR

Migrating Applications from MC9S12VR64 to MC9S12VR32 by: Manuel Rodríguez

Differences Between S32K11x and S32K142

Securing Intelligent Industrial and Networking Devices

Android OS and Power Architecture

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, ColdFire+, C-Ware, the Energy Efficient Solutions logo, Kinetis,

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, ColdFire+, C- Ware, the Energy Efficient Solutions logo, Kinetis,

Freescale s Sensors for Low-Power Applications WISH 2011

Holger Gryska. Global Segment Marketing Manager Advanced Driver Assistance Systems

Microcontroller Brief

Using the PASS module in MPC5748G to implement password-based protection for flash and debugger access

Freescale i.mx Applications Processors based on ARM Technology Connected Multimedia

Jintao Zeng. Asia Pacific Marketing Manager

Exception and fault checking on S32K1xx

FRDM-KE04Z User s Guide User Guide

S32K1xx Bootloader. 1. Introduction. 2. Architecture description. NXP Semiconductors. Application Notes Rev. 1, 10/2018. Contents

Denis Cabrol. Kinetis Global Marketing Manager

Qorivva MPC5602P Microcontroller Product Brief

Product Overview. Why Freescale Wins. Market Leading Positions. Market Trends

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, C-Ware, t he Energy Efficient Solutions logo, mobilegt, PowerQUICC,

FTF-AUT-F0561. Continental Virtual Platform for a Chassis and Safety Application. Dr. D. Baumeister Continental Manfred Thanner - Freescale

Mask Set Errata for Mask 0N29D

Kevin Jia Syst & Apps engineer

Freescale s UTM Security Appliance Solutions

Introducing the PIC24F GB2 MCU Family: extreme Low Power with Hardware Crypto Engine

Block Cipher Modes of Operation

32-bit. 16-bit. 8-bit. Giving customers an ideal solution regardless of architecture preference. Kinetis based on ARM Cortex -M4 core

MSC8156 Ethernet Interface

DataTraveler 5000 (DT5000) and DataTraveler 6000 (DT6000) Ultimate Security in a USB Flash Drive. Submitted by SPYRUS, Inc.

ECE 646 Lecture 8. Modes of operation of block ciphers

Software Datapath Acceleration for Stateless Packet Processing

Security Policy for FIPS KVL 3000 Plus

Secure Cryptographic Module (SCM)

IMXPINSQSUG Quick Start Guide on Pins Tool for i.mx Processors

Transcription:

23 June 2011 Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, C-Ware, t he Energy Efficient Solutions logo, mobilegt, PowerQUICC, QorIQ, StarCore and Symphony are trademarks of Freescale Semiconductor, Inc., Reg. U.S. Pat. & Tm. Off. BeeKit, BeeStack, ColdFire+, CoreNet, Flexis, Kinetis, MXC, Platform in a Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc. All other product or service names are the property of their respective owners. 2011 Freescale Semiconductor, Inc.

Motivation for implementing Cryptographic Services Engine (CSE) Basic Cryptography implemented by CSE Basics of how CSE works and how it is integrated into MPC564xB/C Automotive security use-cases Freescale on Facebook Tag yourself in photos and upload your own! Tweeting? Please use hashtag #FTF2011 2 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

SHE - Secure Hardware Extension Is the functional specification for a peripheral module mainly worked on by AUDI and BMW together with a company called escrypt. It is now an official HIS Specification and is under copyright of the AUDI AG and BMW AG, 2008. The Secure Hardware Extension (SHE) is an on-chip extension to any given microcontroller. It is intended to move the control over cryptographic keys from the software domain into the hardware domain and therefore protect those keys from software attacks. CSE Cryptographic Services Engine The Cryptographic Services Engine (CSE) is a peripheral module that implements the security functions described in the Secure Hardware Extension (SHE) Functional Specification Version 1.1. It is first implemented on MPC564xB/C. 3 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

CSE module implements the official SHE Specification (Version 1.1) CSE module is open to further extensions (e.g. ECC, SHA-256 etc) CSE module is core based and includes an AES cipher and a random number generator CSE module interfaces: Crossbar master interface CSE has access to the entire system memory space Configuration interface System flash blocks are assigned to the CSE module. Access from other masters is impossible 4 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

Secure Core 32bit Core (ColdFire V1) Up to 120 MHz clock frequency runs on system clock AES (Advanced Encryption Standard) Bus Master / DMA programming model Supported crypto modes: ECB (electronic codebook) CBC (cipher-block chaining) Minimal throughput 100 MBit/sec Latency 2µs per one en-/decoding operation IV ECB P i E k C i CBC P i-1 P i P i+1 E k E k E k C i-1 C i C i+1 5 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

Secure NVM NVM emulation on secure flash blocks (2x16k DataFlash) Up to ten generic keys, additional special purpose keys Protected by hard-coded connection with CSE, no access by other master possible RNG (Random number generator) PRNG (Pseudo RNG) seed generation via TRNG (True RNG) 6 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, C-Ware, t he Energy Efficient Solutions logo, mobilegt, PowerQUICC, QorIQ, StarCore and Symphony are trademarks of Freescale Semiconductor, Inc., Reg. U.S. Pat. & Tm. Off. BeeKit, BeeStack, ColdFire+, CoreNet, Flexis, Kinetis, MXC, Platform in a Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc. All other product or service names are the property of their respective owners. 2011 Freescale Semiconductor, Inc.

In cryptography, a block cipher operates on blocks of fixed length, often 64 or 128 bits. Because messages may be of any length, and because encrypting the same plaintext under the same key always produces the same output several modes of operation have been invented which allow block ciphers to provide confidentiality for messages of arbitrary length. Well used modes are: Electronic codebook (ECB), Cipher-block chaining (CBC), Cipher feedback (CFB), Output feedback (OFB) and Counter (CTR) Counter (CTR) Electronic codebook (ECB) The simplest of the encryption modes is the electronic codebook (ECB) mode. The message is divided into blocks and each block is encrypted separately. The disadvantage of this method is that identical plaintext blocks are encrypted into identical ciphertext blocks; thus, it does not hide data patterns well. In some senses, it doesn't provide serious message confidentiality, and it is not recommended for use in cryptographic protocols at all. Cipher-block chaining (CBC) CBC mode of operation was invented by IBM in 1976. In the cipher-block chaining (CBC) mode, each block of plaintext is XORed with the previous ciphertext block before being encrypted. This way, each ciphertext block is dependent on all plaintext blocks processed up to that point. Also, to make each message unique, an initialization vector (IV) must be used in the first block. 8 Key IV Ciphertext Block Cipher Encryption Plaintext Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc. Key ECB Ciphertext Block Cipher Encryption Plaintext CBC Ciphertext Block Cipher Encryption Plaintext

Cipher based Message Authentication Code (CMAC) A MAC (Message Authentication Code) algorithm accepts as input a secret key and an arbitrary-length message to be authenticated, and outputs a MAC. The MAC value protects both a message's data integrity as well as its authenticity, by allowing verifiers (who also possess the secret key) to detect any changes to the message content. Block cipher-based message authentication code algorithm. Used to provide assurance of the authenticity and, hence, the integrity of binary data message key MAC algorithm MAC 9 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, C-Ware, t he Energy Efficient Solutions logo, mobilegt, PowerQUICC, QorIQ, StarCore and Symphony are trademarks of Freescale Semiconductor, Inc., Reg. U.S. Pat. & Tm. Off. BeeKit, BeeStack, ColdFire+, CoreNet, Flexis, Kinetis, MXC, Platform in a Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc. All other product or service names are the property of their respective owners. 2011 Freescale Semiconductor, Inc.

CSE has its own Secure Flash area. This Flash is not accessible by any other master except CSE This is used to store both Firmware, Nonuser keys and User Keys Firmware and Keys are copied to the CSE by either KEYS SSCM issuing the SECURE_BOOT command OR by user software issuing INIT_CSE command User software is not allowed to issue SECURE_BOOT User Keys (all 128 bits) These are programmed by the user and are not present in devices from the factory There are 10 general purpose keys KEY1..KEY10 plus a volatile key RAM_KEY MASTER ECU KEY has the authority to update all other keys on/ off CSE Block Debugger connected DEBUG JTAG NEXUS FLASH Sec. FLASH Test Interface Array Test Interface BIU Host to CSE Interrupt IP SkyBlue-IF Peripheral Bridge PB-IF MI UTI INTC BIU INTC Secure Firewall Host Inter. CSE Core AES Secure Flash KEY_<2 10> KEY1 MK BMK BMAC UID SK SHE-FW ROM XBAR-IF RAM Core edma FlexRay Slaves Masters XBAR MPU RNG SRAM 11 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

User keys (continued) BOOT_MAC_KEY a special key which is used to generate BOOT MAC BOOT_MAC is a CMAC generated or verified at boot time by the CSE in certain boot modes Non User Keys These cannot be updated by the user SECRET_KEY -128 bits a random number programmed in manufacturing and remains a secret forever. UID Unique Identification Item 120 bits ; a unique identifier programmed in manufacturing. Can be retrieved using the GET_UID CSE command. on/ off CSE Block Debugger connected DEBUG JTAG NEXUS FLASH Sec. FLASH Test Interface Array Test Interface BIU Host to CSE Interrupt Secure Flash KEY_<2 10> MK BMK BMAC UID SK IP SkyBlue-IF Peripheral Bridge PB-IF MI UTI INTC BIU INTC Secure Firewall Host Inter. CSE Core AES KEY1 SHE-FW ROM XBAR-IF RAM Core edma FlexRay Slaves Masters XBAR MPU RNG SRAM 12 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

Key Attributes Each key has the following attributes which may be used to limit the use of a specific key Write Protect (WP) can be used to make a key so it can be updated or erased. Use with caution. Will render key unable to be updated. Boot Protect (BP) a key can be disabled if the BOOT_MAC calculation did not match what was previously stored in the BOOT_MAC key slot. Debugger Protection (DP) a key can be disabled if a debugger has been or is currently attached is currently attached Wildcard Updates (WC) a key can be protected from Wildcard Updates (UID =0) Key Usage (KU) a key is assigned to be use for either encryption/decryption (KU=0) or for MAC generation/verification (KU=1) A counter is stored with each key in secure flash and this must be incremented on every update (this helps prevent replay attacks). A checksum is stored with each key 13 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

SHE supports CBC (Cipher Block Chaining Mode) for encryption and decryption of data The key being used must have KU =0 (ENC) CBC uses an initial value (which must also be supplied for decryption) Example code while (CSE.SR.B.BSY ==1){} /*wait until CSE is idle*/ CSE.P1.R CSE_KEY_1; Data to be encrypted key AES algorithm in CBC mode /* KEY_1 has KEY_USAGE=0 (encryption) */ CSE.P2.R = (vuint32_t)&initial_value_cbc; CSE.P3.R = 16; /* number of 128 bit blocks = 64 * 32 /128) */ CSE.P4.R = (vuint32_t)&data_for_encryption; CSE.P5.R = (vuint32_t)&encrypted_data; CSE.CMD.R= CSE_ENC_CBC; Initial value The same initial value must be used for CBC decryption Encrypted data 14 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

The key being used must have KU =1 (MAC) Example code unsigned long long length = 320; while (CSE.SR.B.BSY ==1){} /*wait until CSE is idle*/ CSE.P1.R = CSE_KEY_7; /* KEY_7 has KU=1 (MAC) */ CSE.P2.R = (unsigned long long)&length; /* address of msg length in bits*/ CSE.P3.R = (vuint32_t)&cmac_msg; /* address of the message */ CSE.P4.R = (vuint32_t)&cmac_output; /* address where CSE will write CMAC */ CSE.CMD.R= CSE_GENERATE_MAC; CMAC output is 128 bits. message key AES algorithm in CMAC mode 128 bit CMAC 15 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

CSE has a mechanism which allows users to authenticate a section of boot code in flash. The part can be configured so that on every boot a section of code is authenticated and the generated MAC will be compared with a value previously stored in Secure Flash This is supported only for flash boot modes. Not supported for other boot modes (serial download, wakeup to RAM) as these may present a potential security issue The key used to authenticate the boot code is called BOOT_MAC_KEY The value compared against (in secure flash) is called BOOT_MAC Extra information is added to the start of the boot block after the Reset Configuration Half Word. If SECURE_BOOT fails (boot code is not authenticated) keys which are marked as BOOT_PROTECT cannot be used. 16 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

In this example the boot code starts at 0x10 and CSE will authenticate 4Kbytes of code 0xC is skipped because CSE can authenticate code significantly faster if authentication starts on a 64 bit boundary. Address Content Comment 0x0 0x15A RCHW 0x4 0x8 0xC 0x10 0x10 0x1000 Code starts here Start address for BOOT_MAC calculation Length of code to be authenticated in bytes This address is skipped 17 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

Start address (0x0 in our example AES algorithm in CMAC mode (within CSE) BOOT_MAC Code length (value stored at 0x08 in our example Code to be authenticated BOOT_MAC_KEY 18 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

SSCM Issues SECURE_BOOT command CSE ROM Downloads Firmware & valid Keys from Secure Flash Is BOOT_MAC_ KEY slot empty? Yes Clear CSE_SR[SB] (=0) STOP No Set CSE_SR[SB] (=1) KEY : CSE Action CSE Calculates BOOT_MAC over identified boot code 19 SSCM Action Application Action Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

Is BOOT_MAC slot empty? Yes CSE stores calculated MAC in BOOT_MAC slot CSE_SR[BIN] =1 STOP No CSE compares value stored in BOOT_MAC slot with the value it calculated Do values match? No Set CSE_SR[BOK]=0 CSE_SR[BFN]=1 Yes CSE_SR[BOK]=1 Application Code Issues BOOT_OK CSE_SR[BFN]=1 KEY : CSE Action SSCM Action Application Action 20 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, C-Ware, t he Energy Efficient Solutions logo, mobilegt, PowerQUICC, QorIQ, StarCore and Symphony are trademarks of Freescale Semiconductor, Inc., Reg. U.S. Pat. & Tm. Off. BeeKit, BeeStack, ColdFire+, CoreNet, Flexis, Kinetis, MXC, Platform in a Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc. All other product or service names are the property of their respective owners. 2011 Freescale Semiconductor, Inc.

Assume the secure boot function was executed and the required keys are coupled to the customer application. The car key and the CSE based ECU share one crypto KEY. The ECU sends an random value to car key. The car key send this value encoded back to the ECU. The ECU verifies the returnvalue received from the car. As long as the result doesn t match, the ECU will not start the engine. This system could be combined with component protection to increase security. Key with Transponder ECU KEY1 CSE RNG Core Random Peripheral Fuel Steering lock with antenna Encrypt Secure Flash KEY_<2 10> UID SK Public Flash application code RAM KEY1 MK BMK BMAC SHE-FW Ignition 22 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

Assume Secure boot was executed, CSE keys are coupled to the application code. Mileage is decoded in non-volatile memory When the system starts, mileage will be copied from EEPROM (emulation) into the internal SRAM. Decoding of the encoded data by the CSE with one of the general purpose keys. Every time when the mileage value should be re-written into the NVM it must be encoded beforehand. Due to the fact that CSE can be disabled while a debugger is connected, modifications of the RAM copy during runtime isn t possible. This example is re-usable for all dataset based use-cases Core Core triggers decoding function (e.g. CMD_DEC_ECB) CSE CSE will decode & copy date from flash into RAM READ Public Flash MileageA (ciphertext) application code RAM MileageB (ciphertext) MileageA (plaintext) WRITE Core When writes back the encoded data into the NVM triggers encoding function CSE Every time before the mileage will be re-written into the NVM, the CSE will encode the actual value 23 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

Assume the secure boot function was executed and the used keys are coupled to the customer application on each ECU. One ECU of a group, will be assigned as security master. The security master will poll each ECU of the group and request his UID in encoded form. The key for the encoding is shared with the ECU and the security master. The crypto key is stored inside the CSE secure memory. The polling will happen multiple times (e.g. once per 10 minutes). The security masters compare all received UIDs with an internal database. This database includes all assembled ECUs. In case on ECU is disassembled and re-assembled in another car, the UID and crypto key doesn t match and the component protection system could re-act on this issue (e.g. non comfort features). CSE RAM Core ECU 1 Secure Flash UID KEY1 Flash Peripheral CSE RAM Core CSE RAM Core Security Master (SM) In case the SM is fix assigned by the OEM it is additional mechanical protected (e.g. part of the motor block etc.). Alternatively the SM will be assigned by an algorithm during the startup phase. ECU 2 Secure Flash UID ECU n KEY1 Flash Peripheral Secure Flash UID KEY1 Flash Peripheral CSE RAM Core CSE Security Master RAM Core ECU 3 Secure Flash UID Secure Flash UID OEM network KEY1 Flash Peripheral KEY1 Flash car Peripheral database Connection to the OEM network when the car is in the garage. This gives the OEM the chance to manage to database. 24 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

After every reset the CSE executes the secure boot (SB) function, initiated by the SSCM. The SSCM reads the SB parameters from public flash: application reset vector block size The CSE verified the first application code/data block 0 autonomously CSE support to setup a Chain of trust This system will detect every application modification by a hacker SSCM Init with resetvector and size Public Flash application code/data block n... application code/data block 2 application code/data block 1 Verified code could check the following block. In case only one verification step fails, the CSE keys KEY_<1 10> are disabled and can t be used anymore. Core CSE application code/data block 0 25 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

We have covered: Motivation for implementing Cryptographic Services Engine Basic Cryptography implemented by CSE Basics of how CSE works and how it is integrated into MPC564xB/C Automotive security use-cases In addition there are 2 Application Notes available: AN4234 - Using the Cryptographic Services Engine AN4235 - Using CSE to protect your Application Code via a Chain of Trust Questions? Session materials will be posted @ www.freescale.com/ftf Look for announcements in the FTF Group on LinkedIn or follow Freescale on Twitter 26 Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMAROS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback