Intertrust Technologies Corporation has confirmed its plan to integrate Rambus CryptoFirewall™ hardware-based security cores with its open, standards-based Marlin digital rights management (DRM) technology.
According to Rambus security marketing manager Zainab Al-Shamma, the partnership will enable Intertrust to provide content distributors with an additional level of hardware security in compatible consumer devices, including smart 4K UHD TVs.
As Al-Shamma points out, CryptoFirewall security cores have been integrated into at least 65 chipsets.
“CryptoFirewall cores facilitate a high level of security across set-top boxes and connected TVs,” said Al-Shamma.
“Essentially, the core is designed to shield cryptographic keys and computations within a chip – even if surrounding components are compromised – ensuring comprehensive protection against the unauthorized access of content and services.”
It should be noted that researchers at Riscure recently completed an analysis of CryptoFirewall. The technology was found to effectively mitigate a number of critical threats, including scan interface attacks, man-in-the-middle, replay, OTP memory (corruption and tearing), rights key injection, emulation on STB hardware and physical reverse engineering.
“We found [the CryptoFirewall core from the Cryptography Research division of Rambus] has balanced security mechanisms with the risk of attack in specific areas of the system,” the Riscure report reads. “Examples can be found in the revocation mechanism, canary and unlock mechanisms and EA design.”
Riscure also determined the CryptoFirewall core bolsters both content key and entitlement management (compared to other DVB SoC Key ladder based solutions); offers strong content key derivation security by default and provides as secure – and more cost effective – entitlement management than smart cards.
Lastly, Riscure confirmed the CryptoFirewall core improves the security of a TEE DRM or CA solution by enforcing a robust hardware barrier.
“The CryptoFirewall core is capable of functioning in conjunction with other content protection solutions to serve as the underlying root-of-trust,” added Al-Shamma.