Rambus

At Rambus, we create cutting-edge semiconductor and IP products, spanning memory and interfaces to security, smart sensors and lighting.

Home > Press Releases > Security IP

Security IP

Rambus Enhances Data Center and AI Protection with Next-Gen CryptoManager Security IP Solutions

Highlights:

  • Offers multi-tiered architecture with progressively higher levels of functionality and security for unmatched customer flexibility
  • Supports fast time to market with security solutions spanning a broad set of certifications including FIPS, SESIP, PSA and ISO 26262 & 21434
  • Safeguards against current and future cyberthreats with industry-leading anti-tamper and Quantum Safe protection
Figure 1: Rambus CryptoManager Root of Trust Three-Tier Architecture
Figure 1: Rambus CryptoManager Root of Trust Three-Tier Architecture

SAN JOSE, Calif. – March 10, 2025Rambus Inc. (NASDAQ: RMBS), a premier chip and silicon IP provider making data faster and safer, today announced the introduction of its next-generation CryptoManager Security IP solutions including Root of Trust, Hub and Core families. The CryptoManager Security IP offerings deliver progressively higher levels of functional integration and security, enabling customers to choose the level of security features and capabilities best suited to their unique requirements.

The CryptoManager Root of Trust delivers a fully-turnkey solution and offers the industry’s first Quantum Safe boot flow. The CryptoManager Hub provides the ideal combination of proven cryptographic building blocks for customers designing their own root of trust or secure processor. With support for a broad set of security functionality and certifications, Rambus CryptoManager Security IP solutions help customers accelerate the time to market of chips for the data center, AI and other advanced applications.

“The pace of value creation in the data center driven by AI is unprecedented, and the need to protect this value grows commensurately,” said Matt Jones, SVP and general manager of Silicon IP at Rambus. “The multi-tiered architecture of our new generation CryptoManager Security IP lets us serve a broader set of customers with solutions that provide an unrivaled level of flexibility and industry-leading protection of valuable hardware and data assets.”

“Rebellions builds energy-efficient AI accelerators optimized for Generative AI workloads in Data Center and Enterprise Inference applications,” said Sunghyun Park, co-founder & CEO of Rebellions. “Security is a critical component for ensuring the confidentiality, integrity, authenticity, and availability of data and devices. The CryptoManager solutions from Rambus offer a range of options to meet our performance, security, and area requirements, so we can fully address our customer application demands.”

CryptoManager Security IP solutions include:

  • CryptoManager Root of Trust products offer fully programmable security processor functionality including multithreading and multi-host capabilities. A complete turnkey solution, the CryptoManager Root of Trust family represents the highest level of security integration with advanced anti-tamper and Quantum Safe protection for boot and HW acceleration.
  • CryptoManager Hub products are the ultimate solution for customers looking to build their own Root of Trust or security processor, ensuring unparalleled protection and performance. CryptoManager Hub products feature a state-of-the-art suite of symmetric, asymmetric, and Quantum Safe cryptographic accelerators along with certified true random number generators designed to meet the highest security standards for a broad set of applications.
  • CryptoManager Core products are a state-of-the-art suite of symmetric cryptographic accelerators designed to provide unmatched flexibility for customers building their own Root of Trust solutions.

More Information
CryptoManager Security IP products are certified to FIPS 140-3, SESIP, PSA, ISO 26262 and ISO 21434 for applications across data center, automotive, government and military. For more details, visit Rambus Security IP. Rambus will host a webinar “Implementing State-of-the-Art Digital Protection with Rambus CryptoManager Security IP,” discussing the application and implementation of CryptoManager Security IP products on April 16, 2025 from 10:00am – 11:00am PT. Additional info on the next-gen CryptoManager Security IP solutions including Root of Trust, Hub and Core families can be found on the Rambus blog, “Rambus CryptoManager Root of Trust Solutions Tailor Security Capabilities to Specific Customer Needs with New Three-Tier Architecture.”

Rambus Protects Data Center Infrastructure with Quantum Safe Engine IP

Highlights:

  • Expands industry-leading family of Quantum Safe IP solutions for data center and government hardware security
  • Integrates into root of trust or embedded secure element in advanced SoCs and FPGAs
  • Delivers cryptographic acceleration with leading NIST-selected quantum-resistant algorithms
QSE-IP-86 Quantum Safe Engine
Rambus Quantum Safe Engine (QSE) Block Diagram

SAN JOSE, Calif. – December 4, 2023 – Rambus Inc. (NASDAQ: RMBS), a premier chip and silicon IP provider making data faster and safer, today announced the availability of a Quantum Safe Engine (QSE) for integration into hardware security elements in ASICs, SoCs and FPGAs. Quantum computers will enable adversaries to break current asymmetric encryption, placing important data and assets at risk. The Rambus QSE IP core uses NIST-selected quantum-resistant algorithms to protect valuable data center and government hardware against attacks emerging in the post quantum computing era.

“From AI, to streaming video, to email, the applications we rely on daily depend on the integrity of data and must be guarded against the growing risk of attacks enabled by quantum computers,” said Neeraj Paliwal, general manager of Silicon IP at Rambus. “The Rambus Quantum Safe Engine is another important addition to our security IP portfolio helping customers transition to Quantum Safe Cryptography starting today.”

“Quantum computers will provide individuals and organizations the exponential speed-up and compute power needed to solve some of today’s most complex problems, including the ability to decrypt current data encryption algorithms,” said Heather West, PhD, research manager of Quantum Computing Research at IDC. “Implementing quantum-resistant cryptography now is key for organizations to protect their past, current and future data from quantum computing enabled attacks.”

The Rambus QSE IP is available as a standalone cryptographic core or integrated in the Rambus Quantum Safe Root of Trust IP as a comprehensive hardware security solution. It supports the National Institute of Standards and Technology (NIST) draft standards for quantum-resistant algorithms (FIPS 203 ML-KEM and FIPS 204 ML-DSA), and provides SHA-3, SHAKE-128 and SHAKE-256 acceleration. For highly secure applications requiring additional protection against differential power analysis (DPA) attacks, a DPA version of the QSE IP is available.

Availability and Additional Information:
The Rambus QSE is available for licensing today. Learn more at https://www.rambus.com/security/quantum-safe-cryptography/qse-ip-86/.

Rambus Safeguards Accelerated Computing with FPGA-targeted Security IP

Highlights:

  • Bring FPGAs with a state-of-the-art offering of security IP products
  • Secures the broad range of FPGAs from high-performance accelerators to low-power, lightweight devices
  • Supports FPGAs serving applications for the Data Center, Artificial Intelligence / Machine Learning, Edge, IoT, Defense, and more

SAN JOSE, Calif. – Aug. 22, 2023 – Rambus Inc. (NASDAQ: RMBS), a premier chip and silicon IP provider making data faster and safer, today announced a full suite of Security IP solutions for the FPGA market with state-of-the-art cryptographic, side-channel, and Quantum Safe protections. Designed to meet the unique needs of FPGAs, the offering secures the broad range of devices from high-performance accelerators for generative AI, to low-power solutions for IoT devices. Rambus security IP protects FPGAs serving applications in the Data Center, AI/ML, Edge, IoT, Defense, and beyond.

“As customer demand for security continues to accelerate, Rambus is dedicated to providing state-of-the-art security IP for the broad range of applications increasingly enabled by FPGAs,” said Neeraj Paliwal, general manager of Security IP at Rambus. “Our security IP solutions safeguard these FPGA devices now and in the future with Quantum Safe protection from PQC attacks.”

“In the increasingly distributed and accelerator-based computing architectures enabled by Intel FPGAs, it is mission critical to secure data and devices against today’s threats and those that arise with the advent of quantum computing,” said Premal Buch, vice president and general manager of Programmable Solutions at Intel. “We’re pleased to see Rambus offer security IP solutions tailored to FPGAs powering the growing landscape of accelerated computing.”

As part of the industry-leading portfolio, Rambus offers advanced FPGA targeted security IP products including root of trust, 800G MACsec, IPsec, classic and quantum safe public key encryption solutions. Leveraging pioneering work in differential power analysis (DPA) and fault injection attack (FIA) countermeasures, Rambus security IP delivers the highest levels of protection available against both cryptographic and side-channel attacks. With new Quantum Safe security IP products, Rambus futureproofs the protection of FPGAs for the coming Post Quantum Cryptography (PQC) era.

For more information about Rambus Security IP, please visit www.rambus.com/security.

Rambus Delivers Quantum Safe IP Solutions with Next-Generation Root of Trust for Data Center Security

Highlights:

  • Expands industry-leading security IP offerings with first in a family of Quantum Safe IP solutions
  • Next-gen Root of Trust safeguards data centers and communications from future attacks in post quantum computing era
  • State-of-the-art programmable security solution protects hardware and data with NIST and CNSA quantum-resistant algorithms

Root of Trust with Quantum Safe Encryption

SAN JOSE, Calif. – July 12, 2023 – Rambus Inc. (NASDAQ: RMBS), a premier chip and silicon IP provider making data faster and safer, today announced the first in a family of Quantum Safe security IP products with its next-generation Root of Trust for data center and communications security. Quantum computers will be able to rapidly break current asymmetric encryption, placing important data and assets at risk. The Rambus Root of Trust IP offers customers a complete Post Quantum Cryptography (PQC) hardware security solution that protects valuable data center and AI/ML assets and systems.

“To ensure today’s data remains protected into the future, we must implement now security solutions that safeguard against quantum attacks,” said Neeraj Paliwal, general manager of Security IP at Rambus. “This new generation of the Rambus Root of Trust is a flagship product in our Quantum Safe IP portfolio that offers customers complete security solutions for the data center and advanced workloads like generative AI.”

“Since 2016, NIST has done pioneering efforts to identify post-quantum cryptographic algorithms which will be better suited for protecting critical government and public infrastructure from entities looking to steal data now to decrypt later using quantum computing,” said Heather West, PhD, research manager of Quantum Computing Research at IDC. “Now that NIST has announced its first four post-quantum computing recommendations, it is important that system designers begin implementing quantum-resistant cryptography to ensure that data and hardware remain secure in the quantum computing era.”

Rambus Root of Trust IP with Quantum Safe Cryptography uses the quantum-compute resistant cryptographic algorithms selected by the National Institute of Standards and Technology (NIST): CRYSTALS-Kyber for key-encapsulation and CRYSTALS-Dilithium for digital signatures. In addition, Rambus Root of Trust IP supports the Commercial National Security Algorithm Suite (CNSA) algorithms for software and firmware updates including XMSS/LMS stateful hash firmware signatures, CNSA symmetric-key algorithms, and CNSA quantum-resistant public-key algorithms.

Rambus Quantum Safe Root of Trust Features:

  • Programmable 32-bit secure processor
  • Quantum Safe Encryption engine
  • Open Compute Project (OCP) Caliptra Root of Trust for Measurement with DICE and X.509 support
  • True Random Number Generator (TRNG) and Physical Unclonable Function (PUF) entropy source
  • Secure data store
  • FIPS 140-3 CAVP and CMVP compliant
  • SDK for user development of secure and trusted applications

More Information:
Learn more about the Rambus Root of Trust IP at www.rambus.com/security/root-of-trust/.

Rambus Accelerates Automotive SoC Design with ASIL-B Certified Embedded Hardware Security Module

Highlights: 

  • Rambus RT-640 Embedded Hardware Security Module (HSM) provides automotive chip and device makers state-of-the-art digital protection that meets the functional safety standards of ISO 26262 ASIL-B
  • Industry-standard certified solution accelerates the process of achieving functional safety for automotive SoCs
  • Rambus expands industry-leading security IP portfolio that spans applications from consumer IoT to mission-critical defense electronics
Rambus RT-640 Embedded HSM Block Diagram
Rambus RT-640 Embedded HSM Block Diagram
Rambus RT-640 ASIL-B Certification
Rambus RT-640 ASIL-B Certification

SAN JOSE, Calif. – Mar. 9, 2022 Rambus Inc. (NASDAQ: RMBS), a premier chip and silicon IP provider making data faster and safer, today announced that the Rambus Root of Trust RT-640 Embedded Hardware Security Module (HSM) has received Automotive Safety Integrity Level B (ASIL-B) certification per the ISO 26262 international standard. Certified ASIL-B compliance is a critical requirement for automotive manufacturers and their suppliers to ensure vehicle systems meet necessary safety levels. As Advanced Driver Assistance Systems (ADAS) become increasingly ubiquitous, it is imperative that vehicle electronic systems and data be protected from cyberattack and system malfunction. By integrating the Rambus RT-640 Embedded HSM, automotive SoC makers are able to accelerate the process of achieving functional safety requirements with proven, certified security IP.

“Increasingly sophisticated automotive systems must be both functionally safe and resilient to cyberattack,” said Neeraj Paliwal, general manager of Security IP at Rambus. “With the Rambus RT-640 Embedded HSM, automotive manufacturers get the best of both worlds: robust cybersecurity anchored in hardware with the assurance of ASIL-B functional safety. We have already achieved multiple design wins for the RT-640 across the globe, and it has tremendous traction in the new centralized automotive architecture across ADAS and sensors such as cameras, lidar and radar.”

Rambus is the leading supplier of security IP with the industry’s broadest portfolio of solutions. With nearly 200 design wins in the past three years, Rambus has proven security IP solutions for every application from consumer IoT to mission-critical defense electronics. With certified solutions such as the RT-640 Embedded HSM, chip and device makers can implement state-of-the-art security, meet industry-specified requirements, and reduce time to market.

Ensuring Functional Safety with ISO 26262 ASIL-B

Specified under ISO 26262, ASIL-B is a risk classification defined for functional safety of road vehicles. ASIL levels are assigned by performing risk analysis of potential hazards by examining various risk parameters such as severity, exposure and controllability of the vehicle operating scenario. In addition to the RT-640 HSM ASIL-B certification, the Rambus hardware and software development organizations have demonstrated to have the qualification, knowledge, and expertise required for the automotive industry and therefore have been certified to operate in accordance with ISO 26262:2018 standard ASIL-B for development and support processes.

While developing ADAS, automotive electronics makers are building complex SoCs, replacing discrete secure processor elements with ISO 26262-certified synthesizable IP and software. The Rambus RT-640 is the first programmable automotive grade Hardware Root of Trust IP solution on the market to reach this certified status. Customers can integrate the RT-640 as-is and focus on their own automotive security application without affecting the RT-640 certificate.

Integrated into an automotive SoC, the ASIL B certified RT-640 silicon IP design provides powerful cryptographic functions, state-of-the-art safety mechanisms and anti-tamper technologies to protect critical automotive electronics and data. This robust cybersecurity solution has been certified by TÜV-SGS 26262 ASIL-B functional safety. The ASIL-B certificate guarantees that all safety mechanisms are implemented and verified correctly, meet and exceed the required safety integrity levels and are supported with the ISO 26262 required evidence.

The certified RT-640 Embedded HSM key features include:

  • Fully programmable, purpose-built security processor with hardware enforced security and privilege levels
  • High-performance cryptographic accelerators for RSA, ECC, AES, HMAC and SHA-2
  • NIST SP 800-90 compliant random bit generator
  • Hardware enforced security with state-of-the-art protection from side channel and tampering attacks
  • ASIL-B safety mechanisms in the HW and SW implementation

More Information:

For more information on the Rambus RT-640 Embedded HSM, please visit https://www.rambus.com/security/root-of-trust/rt-640/.

Rambus Root of Trust Delivers FIPS 140-2 CMVP Security in Kyocera Multifunction Products

Highlights:  

  • Kyocera multifunction products (MFPs) integrate FIPS-certified Rambus RT-130 Root of Trust, and AES-IP-38 AES Accelerator
  • Industry-leading Rambus security IP accelerates and streamlines customer CMVP certification process
  • Rambus security IP enables chip and system companies to provide their customers with the most robust and up-to-date protection of hardware and data

SAN JOSE, Calif. – Jan. 11, 2022 Rambus Inc. (NASDAQ: RMBS), a premier chip and silicon IP provider making data faster and safer, today announced that Kyocera Evolution Series MFPs offer data security meeting Federal Information Processing Standards (FIPS) 140-2 Cryptographic Module Validation Program (CMVP) standards using the Rambus RT-130 Root of Trust and AES-IP-38 AES Accelerator IP. Meeting FIPS 140-2 CMVP demonstrates that Kyocera MFP customers are assured the highest level of security for their hardware and data.

“We enable our customers to turn information into knowledge, excel at learning and surpass others. With professional expertise and a culture of empathetic partnership, we help organizations put knowledge to work to drive change,” said Michihiro Okada, deputy senior general manager, Corporate R&D Division, at Kyocera. “Relying on Rambus for mission-critical security IP allows us to offer customers world leading document solutions and ensure their data is protected.”

“Relying on Rambus for mission-critical security IP allows us to offer customers world leading document solutions and ensure their data is protected”

- Michihiro Okada, Deputy Senior General Manager, Corporate R&D Division at Kyocera

By building on Rambus FIPS CMVP-certified IP solutions, chip and system providers can better navigate the certification process and speed the development of secure solutions. The industry-leading, FIPS-certified Kyocera Evolution Series MFPs utilize the Rambus RT-130 Root of Trust and AES-IP-38 AES Accelerator as part of a system security architecture that provides the most robust and up-to-date protection for customers.

“Secure by design is a fundamental property of solutions from industry leaders like Kyocera,” said Neeraj Paliwal, general manager of security IP at Rambus. “With FIPS 140-2 CMVP certified security IP from Rambus, customers are able to rapidly and efficiently achieve the highest level of protection of systems and data.”

To find out more information about Rambus security solutions, please visit the FIPS 140-2 CMVP-certified RT-130 Root of Trust and AES-IP-38 AES Accelerator IP cores. For more details on Rambus Security IP, visit rambus.com/security/.

Rambus logo