Rambus

At Rambus, we create cutting-edge semiconductor and IP products, spanning memory and interfaces to security, smart sensors and lighting.

Home > Press Releases > Security IP

Security IP

Rambus Accelerates Automotive SoC Design with ASIL-B Certified Embedded Hardware Security Module

Highlights: 

  • Rambus RT-640 Embedded Hardware Security Module (HSM) provides automotive chip and device makers state-of-the-art digital protection that meets the functional safety standards of ISO 26262 ASIL-B
  • Industry-standard certified solution accelerates the process of achieving functional safety for automotive SoCs
  • Rambus expands industry-leading security IP portfolio that spans applications from consumer IoT to mission-critical defense electronics
Rambus RT-640 Embedded HSM Block Diagram
Rambus RT-640 Embedded HSM Block Diagram
Rambus RT-640 ASIL-B Certification
Rambus RT-640 ASIL-B Certification

SAN JOSE, Calif. – Mar. 9, 2022 Rambus Inc. (NASDAQ: RMBS), a premier chip and silicon IP provider making data faster and safer, today announced that the Rambus Root of Trust RT-640 Embedded Hardware Security Module (HSM) has received Automotive Safety Integrity Level B (ASIL-B) certification per the ISO 26262 international standard. Certified ASIL-B compliance is a critical requirement for automotive manufacturers and their suppliers to ensure vehicle systems meet necessary safety levels. As Advanced Driver Assistance Systems (ADAS) become increasingly ubiquitous, it is imperative that vehicle electronic systems and data be protected from cyberattack and system malfunction. By integrating the Rambus RT-640 Embedded HSM, automotive SoC makers are able to accelerate the process of achieving functional safety requirements with proven, certified security IP.

“Increasingly sophisticated automotive systems must be both functionally safe and resilient to cyberattack,” said Neeraj Paliwal, general manager of Security IP at Rambus. “With the Rambus RT-640 Embedded HSM, automotive manufacturers get the best of both worlds: robust cybersecurity anchored in hardware with the assurance of ASIL-B functional safety. We have already achieved multiple design wins for the RT-640 across the globe, and it has tremendous traction in the new centralized automotive architecture across ADAS and sensors such as cameras, lidar and radar.”

Rambus is the leading supplier of security IP with the industry’s broadest portfolio of solutions. With nearly 200 design wins in the past three years, Rambus has proven security IP solutions for every application from consumer IoT to mission-critical defense electronics. With certified solutions such as the RT-640 Embedded HSM, chip and device makers can implement state-of-the-art security, meet industry-specified requirements, and reduce time to market.

Ensuring Functional Safety with ISO 26262 ASIL-B

Specified under ISO 26262, ASIL-B is a risk classification defined for functional safety of road vehicles. ASIL levels are assigned by performing risk analysis of potential hazards by examining various risk parameters such as severity, exposure and controllability of the vehicle operating scenario. In addition to the RT-640 HSM ASIL-B certification, the Rambus hardware and software development organizations have demonstrated to have the qualification, knowledge, and expertise required for the automotive industry and therefore have been certified to operate in accordance with ISO 26262:2018 standard ASIL-B for development and support processes.

While developing ADAS, automotive electronics makers are building complex SoCs, replacing discrete secure processor elements with ISO 26262-certified synthesizable IP and software. The Rambus RT-640 is the first programmable automotive grade Hardware Root of Trust IP solution on the market to reach this certified status. Customers can integrate the RT-640 as-is and focus on their own automotive security application without affecting the RT-640 certificate.

Integrated into an automotive SoC, the ASIL B certified RT-640 silicon IP design provides powerful cryptographic functions, state-of-the-art safety mechanisms and anti-tamper technologies to protect critical automotive electronics and data. This robust cybersecurity solution has been certified by TÜV-SGS 26262 ASIL-B functional safety. The ASIL-B certificate guarantees that all safety mechanisms are implemented and verified correctly, meet and exceed the required safety integrity levels and are supported with the ISO 26262 required evidence.

The certified RT-640 Embedded HSM key features include:

  • Fully programmable, purpose-built security processor with hardware enforced security and privilege levels
  • High-performance cryptographic accelerators for RSA, ECC, AES, HMAC and SHA-2
  • NIST SP 800-90 compliant random bit generator
  • Hardware enforced security with state-of-the-art protection from side channel and tampering attacks
  • ASIL-B safety mechanisms in the HW and SW implementation

More Information:

For more information on the Rambus RT-640 Embedded HSM, please visit https://www.rambus.com/security/root-of-trust/rt-640/.

Rambus Root of Trust Delivers FIPS 140-2 CMVP Security in Kyocera Multifunction Products

Highlights:  

  • Kyocera multifunction products (MFPs) integrate FIPS-certified Rambus RT-130 Root of Trust, and AES-IP-38 AES Accelerator
  • Industry-leading Rambus security IP accelerates and streamlines customer CMVP certification process
  • Rambus security IP enables chip and system companies to provide their customers with the most robust and up-to-date protection of hardware and data

SAN JOSE, Calif. – Jan. 11, 2022 Rambus Inc. (NASDAQ: RMBS), a premier chip and silicon IP provider making data faster and safer, today announced that Kyocera Evolution Series MFPs offer data security meeting Federal Information Processing Standards (FIPS) 140-2 Cryptographic Module Validation Program (CMVP) standards using the Rambus RT-130 Root of Trust and AES-IP-38 AES Accelerator IP. Meeting FIPS 140-2 CMVP demonstrates that Kyocera MFP customers are assured the highest level of security for their hardware and data.

“We enable our customers to turn information into knowledge, excel at learning and surpass others. With professional expertise and a culture of empathetic partnership, we help organizations put knowledge to work to drive change,” said Michihiro Okada, deputy senior general manager, Corporate R&D Division, at Kyocera. “Relying on Rambus for mission-critical security IP allows us to offer customers world leading document solutions and ensure their data is protected.”

“Relying on Rambus for mission-critical security IP allows us to offer customers world leading document solutions and ensure their data is protected”

- Michihiro Okada, Deputy Senior General Manager, Corporate R&D Division at Kyocera

By building on Rambus FIPS CMVP-certified IP solutions, chip and system providers can better navigate the certification process and speed the development of secure solutions. The industry-leading, FIPS-certified Kyocera Evolution Series MFPs utilize the Rambus RT-130 Root of Trust and AES-IP-38 AES Accelerator as part of a system security architecture that provides the most robust and up-to-date protection for customers.

“Secure by design is a fundamental property of solutions from industry leaders like Kyocera,” said Neeraj Paliwal, general manager of security IP at Rambus. “With FIPS 140-2 CMVP certified security IP from Rambus, customers are able to rapidly and efficiently achieve the highest level of protection of systems and data.”

To find out more information about Rambus security solutions, please visit the FIPS 140-2 CMVP-certified RT-130 Root of Trust and AES-IP-38 AES Accelerator IP cores. For more details on Rambus Security IP, visit rambus.com/security/.

NextChip Selects Rambus Security IP to Secure Apache6 Automotive Processor

Highlights:

  • Rambus RT-640 Root of Trust and MACsec-IP-160 Protocol Engine to protect next-generation NextChip Apache6 SoC
  • Rambus Root of Trust and MACsec engine enable secure boot for centralized domain/zone processors and link protection for Automated Valet Parking (AVP) and other demanding ADAS applications
  • Rambus security solutions meet ISO 26262 ASIL-B reliability and protect mission-critical data at rest and in motion

SAN JOSE, Calif. – Dec. 7, 2021 Rambus Inc. (NASDAQ: RMBS), a premier chip and silicon IP provider making data faster and safer, today announced that NextChip has selected the Rambus RT-640 Root of Trust and MACsec-IP-160 Protocol Engine to provide hardware-level security for their next-generation Apache6 automotive processor. The Apache6 ADAS SoC combines advanced CPU, GPU, ISP and NPU processors to enable demanding automotive vision and domain/zone controller applications such as AVP. The Rambus RT-640 Root of Trust is specifically tailored as an embedded hardware security module (HSM) for automotive ADAS applications requiring ASIL-B level reliability. In addition, the MACsec-IP-160 encrypts and protects data communicated over the in-vehicle network.

“We’re raising the bar for reliable, compact and affordable ADAS solutions with the Apache6,” said Hweihn Chung, CTO at NextChip. “With Rambus security IP solutions, Apache6 offers state-of-the-art protection of mission-critical data while meeting full ASIL-B compliance.”

The Rambus RT-640 Root of Trust provides security services and protection of data processed by the Apache6 SoC. The RT-640 is a powerful security co-processor featuring automotive grade embedded security software, high-performance cryptographic accelerators for AES, HMAC, SHA-2 and more. In addition, dedicated safety integrity mechanisms ensure correct operations and extensive error handling and the advanced anti-tamper features of the RT-640 protect chips from side-channel and fault injection (FI) attacks. The Rambus MACsec-IP-160 encrypts and protects data at speeds up to 100 Gbps over Ethernet in-car networks.

“The growing power and capabilities of ADAS solutions like NextChips’s Apache6 raise the stakes for the highest level of data and hardware security,” said Neeraj Paliwal, general manager of Security IP at Rambus. “It’s an honor to be selected by NextChip for our industry-leading security solutions tailored for the performance and reliability needs of the automotive market.”

 

More Information:

For more information, please visit:

Lattice and Rambus to Partner on Next-Generation Security Solutions

SAN JOSE, Calif. and Hillsboro, OR – April 26, 2021 Rambus Inc. (NASDAQ: RMBS), a provider of industry-leading chips and silicon IP making data faster and safer, and Lattice Semiconductor (NASDAQ: LSCC), the low power programmable leader, today announced a partnership to leverage their respective technology expertise in next-generation security solutions. Through the partnership, customers will have access to Rambus secure hardware IP on Lattice FPGAs for communications, computing, industrial, automotive, and consumer applications.

“System developers need access to the latest and greatest security technologies to protect their devices against increasing cyberattacks,” said Eric Sivertson, vice president of Security Business at Lattice. “Lattice is constantly expanding our portfolio of award-winning security products, solutions and services, and we’re excited to add Rambus’ security expertise to our partner ecosystem.”

“The rapidly expanding cyber threat environment and increasingly sophisticated adversaries make data and device security mission-critical,” said Neeraj Paliwal, general manager of Security at Rambus. “This collaboration between Rambus and Lattice will provide the highest level of protection for next-generation systems across a broad range of emerging applications.”

 

About Rambus Inc.
Rambus is a provider of industry-leading chips and silicon IP making data faster and safer. With over 30 years of advanced semiconductor experience, we are a pioneer in high-performance memory subsystems that solve the bottleneck between memory and processing for data-intensive systems. Whether in the cloud, at the edge or in your hand, real-time and immersive applications depend on data throughput and integrity. Rambus products and innovations deliver the increased bandwidth, capacity and security required to meet the world’s data needs and drive ever-greater end-user experiences. For more information, visit rambus.com.

About Lattice Semiconductor

Lattice Semiconductor is the low power programmable leader. We solve customer problems across the network, from the Edge to the Cloud, in the growing communications, computing, industrial, automotive, and consumer markets. Our technology, long-standing relationships, and commitment to world-class support lets our customers quickly and easily unleash their innovation to create a smart, secure and connected world. For more information, visit latticesemi.com.

Rambus Joins DARPA Toolbox Initiative with State-of-the-Art Security and Interface IP

Highlights: 

  • Agreement makes Rambus Root of Trust, Secure Protocol Engines, along with Memory and SerDes PHYs and Controllers available to DARPA researchers
  • Streamlined access to cutting-edge silicon IP accelerates forward-looking innovation
  • DARPA researchers will be able to leverage industry-leading capabilities and expertise from Rambus

SAN JOSE, Calif. – April 14, 2021 Rambus Inc. (NASDAQ: RMBS), a provider of industry-leading chips and silicon IP making data faster and safer, today announced a commercial licensing agreement with the U.S. Defense Advanced Research Projects Agency (DARPA) to accelerate technology innovation for the agency’s programs. The agreement makes all Rambus security, memory interface, and SerDes interface IP products available to DARPA researchers. As licensees, DARPA researchers benefit by having access to IP offering renowned security protection and the world’s fastest chip interfaces.

“Rambus has the industry’s broadest portfolio of state-of-the-art security IP products, and offers leading interface IP at some of the highest bandwidths available,” said Sean Fan, chief operating officer at Rambus. “We are excited to add our full suite of cutting-edge silicon IP to DARPA Toolbox, and look forward to the new opportunities to provide our solutions and expertise for their ecosystem.”

The DARPA Toolbox initiative is an agency-wide effort to provide open licensing opportunities with commercial technology vendors to the researchers behind DARPA programs. Through DARPA Toolbox, successful proposers will receive greater access to commercial vendors’ technologies and tools via pre-negotiated, low-cost, non-production access frameworks and simplified legal terms. For commercial vendors, DARPA Toolbox will provide an opportunity to leverage the agency’s forward-looking research and a chance to develop new revenue streams based on programmatic achievements developed with their technologies.

“With Rambus joining our DARPA Toolbox Initiative, we add state-of-the-art security and interface technologies,” Serge Leef, the Microsystems Technology Office (MTO) program manager at DARPA leading DARPA Toolbox. “Our researchers will now have streamlined access to this cutting-edge IP to accelerate the speed of development for their projects.”

Through the DARPA Toolbox, researchers will have access to all Rambus Security, Memory Interface and SerDes Interface IP solutions including:

 Rambus Security IP

Rambus Memory and SerDes Interface IP

Rambus is one of a limited number of select technology companies to sign commercial partnership agreements under DARPA Toolbox. Rambus technologies under the initiative serve a broad range of applications from Data Center, Edge, 5G networking, Artificial Intelligence (AI), to Internet of Things (IoT).

For more information on Rambus Security solutions, please visit rambus.com/security. To learn more about Rambus Interface IP, visit rambus.com/interface-ip/.

Rambus IPsec Packet Engine Secures 5G Networking at 10 Gbps

Highlights: 

  • Internet Protocol Security (IPsec) Packet Engine with integrated Data Plane Development Kit (DPDK) and companion key negotiation toolkit provides complete solution for securing 5G networking from 1 to 10 Gbps data rates
  • Easily integrates into SoCs for 5G base stations, core network, gateways and end points
  • Supports 3GPP, TLS, DTLS protocols, all relevant IPsec RFCs, and NIST-compliant algorithms

SAN JOSE, Calif. – Oct. 27, 2020 Rambus Inc. (NASDAQ: RMBS), a premier silicon IP and chip provider making data faster and safer, today announced the availability of a high-performance IPsec Packet Engine with integrated DPDK and companion key negotiation toolkit capable of securing 5G network traffic at data rates from 1 to 10 Gbps. A complete IPsec solution, the packet engine can be easily integrated into SoCs for a broad range of 5G devices from base stations and cloud, to gateways and end devices. This new engine is optimized to support the required protocols up to 10 Gbps with the most efficient footprint.

5G offers ten times the throughput and one hundred times the capacity of 4G networks. This increased jump in performance is enabled through more powerful devices, software-defined networking and application virtualization. All of these create greater complexity and higher demands on network processors and CPUs with the impact of greater latency. Offloading cryptographic operations to a dedicated IPsec Packet Engine streamlines processing and enables network traffic to be moved securely at line rate. Along with IPsec, for base stations and gateways, the solution has configurations that allow simultaneous IPsec, 3GPP and TLS processing on the packet engine.

“A host of new real-time applications are possible with the speed and bandwidth of 5G networks,” said Neeraj Paliwal, vice president and general manager, Rambus Security. “By anchoring security in hardware with our new IPsec Packet Engine, data on 5G networks can flow at full speed and be safeguarded from attack.”

Benefits of the Rambus IPsec Packet Engines:

  • Secures 5G network traffic with IPsec protocol at data rates from 1 to 10 Gbps. For the core and cloud server, Rambus offers dedicated high-end solutions for MACsec and IPsec.
  • Provides complete solution with integrated DPDK and companion key negotiation tool kit.
  • Supports 3GPP, PDCP, TLS, SSL, DTLS, IPsec protocols, as well as a broad portfolio of NIST-compliant algorithms. As an option, the packet engine can be enhanced with country-specific security targeting SoCs for the global market, satisfying specific regional requirements.
  • Backed by renowned Rambus security expertise and support.
  • Easily integrates into SoCs designed for 5G base stations, cloud network devices, gateways and end point devices.

Availability
The Rambus IPsec Packet Engine is available today for licensing and integrating into SoC designs.

Additional Information
For more information on the Rambus Security IP, including the IPsec Packet Engine for 5G, please visit rambus.com/security/.