Security

More documents

Recommendations

Info

• Many automotive security applications are based on cryptographic algorithms that utilize security keys. • Today these security keys are typically encoded and in public Flash on chip. By being publically accessible, the keys are at risk to SW attack. • The CSE stores the keys in a secure Flash array that is only accessible by the CSE module. • The CSE additionally provides cryptographic algorithms (AES-128) and a secure boot up feature that allows for the public Flash to be authenticated. • The CSE module is based on the Secure Hardware Extention (SHE) spec. • FSL is the first to have silicon publically available that supports the SHE spec. TM 10 Crypto Service Engine (CSE) RNG Key NVM AES-128 RAM CODE & KEY ROM Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, C-Ware, the Energy Efficient Solutions logo, mobileGT, PowerQUICC, QorIQ, StarCore and Symphony are trademarks of Freescale Semiconductor, Inc., Reg. U.S. Pat. & Tm. Off. BeeKit, BeeStack, ColdFire+, CoreNet, Flexis, Kinetis, MXC, Platform in a Package, Processor Expert, QorIQ Qonverge, Qorivva, QUICC Engine, SMARTMOS, TurboLink, VortiQa and Xtrinsic are trademarks of Freescale Semiconductor, Inc. All other product or service names are the property of their respective owners. © 2011 Freescale Semiconductor, Inc.
Step 1: After power on: CSE module reads bootloader via its bus master interface. Step 2: CSE module uses the boot key to calculates the MAC value of the bootloader. Step 3: CSE module compares calculated MAC with stored boot MAC. If identical: successful secure boot set respective bit in host interface and unlock keys Step 4: MCU always starts bootloader. 4 Bootloader: Part of flash memory Start bootloader • MAC(message authentication code) protects against modification of bootloader and depends on the (secret) boot key integrity and authenticity of bootloader. • Only if calculated MAC value matches stored boot MAC value: successful secure boot set respective bit in host interface and unlock keys for further usage (see next demos) TM Random number generator 1 Bus master 11 Flash MPC5646C CSE module Unique ID AES-128 2a 3b MAC value Keys Boot key Host Interface Bit for successful 3c secure boot Keys unlocked Freescale, the Freescale logo, AltiVec, C-5, CodeTEST, CodeWarrior, ColdFire, ColdFire+, C-Ware, the Energy Efficient Solutions logo, Kinetis, mobileGT, PowerQUICC, Processor Expert, QorIQ, Qorivva, StarCore, Symphony and VortiQa are trademarks of Freescale Semiconductor, Inc., Reg. U.S. Pat. & Tm. Off. Airfast, BeeKit, BeeStack, CoreNet, Flexis, MagniV, MXC, Platform in a Package, QorIQ Qonverge, QUICC Engine, Ready Play, SafeAssure, the SafeAssure logo, SMARTMOS, TurboLink, Vybrid and Xtrinsic are trademarks of Freescale Semiconductor, Inc. All other product or service names are the property of their respective owners. © 2012 Freescale Semiconductor, Inc. 2c 2b Boot MAC juergen.frank@freescale.com 3a
Page 1 and 2: June 2012 TM Freescale, the Freesca
Page 3 and 4: TM Freescale, the Freescale logo, A
Page 5 and 6: Comfort Features ►Door Module ►
Page 9: • 16-bit Devices: S12XE as exampl
Page 13 and 14: Central ECU with MPC5646C Random nu
Page 15 and 16: Master ECU with MPC5646C Random num
Page 17 and 18: • Crypto Service Manager (CSM)
Page 21 and 22: • CSE module implements the offic
Page 23 and 24: US IntelliDrive VII CAR 2 CAR CC
Page 25 and 26: • Tier1 specification of security
Page 27 and 28: • BMW and Audi commissioned escry
Page 29 and 30: • Security tutorial − Flash fil

Security

Create successful ePaper yourself

Delete template?

Save as template?