Rambus

At Rambus, we create cutting-edge semiconductor and IP products, spanning memory and interfaces to security, smart sensors and lighting.

Home > You searched for IoT security > Page 36

Search Results for: IoT security

CRYPT-IP-120

CRYPT-IP-120 AES Crypto, SHA-2 Hash Core with DMA

Contact Us

The CRYPT-IP-120 combines local key storage, an AES cipher (AES-IP-39), a SHA-2 hash (HASH-IP-57) and DMA capability into an easy to integrate, silicon-proven package. Designed for fast integration into SoCs, and featuring low gate count and full transforms, the CRYPT-IP-120 DMA crypto engine provides a reliable and cost-effective embedded solution for high speed processing pipelines.

Contact Us IconContact
AES, SHA-2, and DMA in a single IP core

Performance @ 500MHz

  • 1 Gbps AES-128, 192
  • 8 Gbps AES-256
  • 4 Gbps SHA-256
Optional algorithms and customization

CRYPT-120 Advantages

The CRYPT-IP-120 DMA crypto core provides hardware cryptographic algorithm implementations for optimal performance, user experience, battery lifetime and robust security.

  • Significant performance boost compared to software execution on the host processor.
  • Ability to store keys in an integrated RAM via DMA, and keep these inaccessible from (but usable by) the host/application.

The flexibility of the CRYPT-IP-120 architecture allows customization to individual requirements, including SNOW3G, Kasumi, AES-XTS and other basic IP modules.

CRYPT-IP-120 Features

Specifications CRYPT-IP-120b CRYPT-IP-120c-c CRYPT-IP-120c-h CRYPT-IP-120d-h CRYPT-IP-120f
Control Interface Simple register based control interface
Operation done interrupt
DMA done interrupt
DMA Controller4 Check Icon Check Icon Check Icon Check Icon Check Icon

AHB Master & Slave Interfaces5

 Check Icon Check Icon Check Icon Check Icon Check Icon
Local Key Store3 Check Icon       Check Icon
AES1 Check Icon       Check Icon
SHA   224, 256 224, 256, 384, 5122 224, 256, 384, 5122 224, 256  
Gate Count (fab and process node-dependent) 49-53K        

Notes:

  1. AES Algorithm (AES)
    • 128, 192 and 256-bit key support
    • AES-ECB/CBC/CTR
    • AES-CBC-MAC
    • AES-CCM
    • AES-GCM (Optional, by default available)
    • Internal GCM hash key calculation
    • Key load via the Key Store only
    • IV writing and reading via slave interface
    • Data load via the slave and DMA
    • Data readout via the slave and DMA
    • Tag readout via the slave and DMA
 
  1. Hash Configuration
    • Basic hash
    • HMAC (using several basic hash operations)
    • Digest and length load via the slave
    • Data load via the slave and DMA
    • Digest readout via the slave and DMA
 
  1. Key Store
    • Secure management of sensitive security parameters
    • Local 8 x 128-bit (or 4 x 192-bit/256-bit) encryption key storage
    • Writable via DMA only
    • Key store RAM: 32×32 bit 1 port RAM
 
  1. DMA controller
    • Two channels (inbound, outbound)
    • 16-bit DMA length
 
  1. AMBA interface
    • AHB interface (AMBA V2.0)
      • 32-bit AHB slave interface for configuration and data
      • 32-bit AHB master interface for keys, crypto and hash blocks
      • Optional use of privileged accesses for key reads
    • AXI interface (AMBA V3.0)
      • 32-bit and 64-bit AXI master and slave interface available on request
Introduction to Side-Channel Attacks eBook

Introduction to Side-Channel Attacks

Side-channel attacks conducted against electronic gear are relatively simple and inexpensive to execute. Such attacks include simple power analysis (SPA) and Differential Power Analysis (DPA). As all physical electronic systems routinely leak information, effective side-channel countermeasures should be implemented at the design stage to ensure protection of sensitive keys and data.

Download eBook

From the blog

Resources

News

Related Papers

Related Markets & Applications

AI & Machine Learning
Automotive
Edge
Government
IoT

Kasumi-IP-06

Kasumi-IP-06 3GPP Kasumi Accelerators

Contact Us

The Kasumi-IP-06 (EIP-06) cipher accelerators implement the specification of the 3GPP Confidentiality and Integrity Algorithms as specified in 3GPP TS 35.201 and 3GPP TS 35.202. Designed for fast integration, low gate count and full transforms, the Kasumi-06 accelerator provides a reliable and cost-effective embedded IP solution that is easy to integrate into high speed SoCs for base stations or other equipment requiring 3GPP support.

Contact Us IconContact

3GPP Kasumi family of accelerators.

Available in two configurations / performance grades.

Targeting Base Station designs.

How the Kasumi-IP-06 3GPP Kasumi Accelerators work

The Kasumi-IP-06 is a family of the cryptographic library elements in the Rambus hardware IP library (formerly of Inside Secure). For example, the Kasumi-IP-06 is the cipher core embedded in some PacketEngine-IP-97/196/197 protocol-aware security engines. The accelerators include I/O registers, encryption and decryption cores, and the logic for feedback modes and key scheduling.

Sustained performance for any object sizes ranges from 2.4 to 5 Gbps depending on the configuration, area and frequency. Gate count is around 20K gates depending on the configuration. Supported modes: UEA2, UIA2, f8. F9.

Rambus also offers accelerators for the other 3GPP algorithms.

Kasumi-IP-06 3GPP Kasumi Accelerators
Kasumi-IP-06 3GPP Kasumi Accelerators
Watch Anti-Tampering Technologies Webinar

Anti-Tampering Technologies

The design of chip anti-tamper protection needs to adapt and scale with rising threats. Adversaries range from high school hackers to well-funded state actors. Given the threats, it’s useful to think about anti-tamper countermeasures as a hierarchy of safeguards that parallel the type, effort and expense of attacks. Watch this webinar to learn the eleven kinds of tampering attacks and their required skills and resources, and countermeasures for each of these attacks.

Watch Webinar

Kasumi-IP-06 Information

Key benefits:

  • Silicon-proven implementation
  • Fast and easy to integrate into SoCs
  • Flexible layered design.
  • Complete range of configurations
  • World-class technical support
 

Features:

  • Wide bus interface (64-bit data, 128-bit keys) or 32-bit register interface.
  • Includes key scheduling hardware.
  • Modes Kasumi
  • Algorithms f8 and f9.
  • Fully synchronous design.
  • Low Speed, High Speed versions.
Introduction to Side-Channel Attacks eBook

Introduction to Side-Channel Attacks

Side-channel attacks conducted against electronic gear are relatively simple and inexpensive to execute. Such attacks include simple power analysis (SPA) and Differential Power Analysis (DPA). As all physical electronic systems routinely leak information, effective side-channel countermeasures should be implemented at the design stage to ensure protection of sensitive keys and data.

Download eBook

From the blog

Resources

News

Related Papers

Related Markets & Applications

AI & Machine Learning
Automotive
Edge
Government
IoT

SNOW-IP-46

SNOW-IP-46 3GPP SNOW 3G Accelerators

Contact Us

The SNOW-IP-46 (EIP-46) cipher accelerators implement the specification of the 3GPP Confidentiality and Integrity Algorithms as specified by 3GPP and ETSI. Designed for fast integration, low gate count and full transforms, the SNOW-IP-46 accelerator provides a reliable and cost-effective embedded IP solution that is easy to integrate into high speed SoCs for base stations or other equipment requiring 3GPP support.

Contact Us IconContact

3GPP Snow 3G family of accelerators.

Available in three configurations / performance grades.

Targeting Base Station designs.

How the SNOW-IP-46 3GPP SNOW 3G Accelerators work

The SNOW-IP-46 is a family of the cryptographic library elements in the Rambus hardware IP library (formerly of Inside Secure). For example, the SNOW-IP-46 is the cipher core embedded in some PacketEngine-IP-97/196/197 protocol aware security engines. The accelerators include I/O registers, encryption and decryption cores, and the logic for feedback modes and key scheduling.

Sustained performance for any object sizes ranges from 4 to 30 Gbps depending on the configuration, area and frequency. Gate count is 20K to 40K gates depending on the configuration. Supported modes: UEA2, UIA2, 128-EEA1 and 128-EIA1

Rambus also offers accelerators for the other 3GPP algorithms.

SNOW-IP-46 3GPP SNOW3G Accelerators
SNOW-IP-46 3GPP SNOW3G Accelerators
Watch Anti-Tampering Technologies Webinar

Anti-Tampering Technologies

The design of chip anti-tamper protection needs to adapt and scale with rising threats. Adversaries range from high school hackers to well-funded state actors. Given the threats, it’s useful to think about anti-tamper countermeasures as a hierarchy of safeguards that parallel the type, effort and expense of attacks. Watch this webinar to learn the eleven kinds of tampering attacks and their required skills and resources, and countermeasures for each of these attacks.

Watch Webinar

SNOW-IP-46 Information

Key benefits:

  • Silicon-proven implementation
  • Fast and easy to integrate into SoCs
  • Flexible layered design
  • Complete range of configurations
  • World-class technical support
 

Features:

  • Wide bus interface (32-bit data, 128-bit keys) or 32-bit register interface
  • Includes key scheduling hardware
  • Supported modes: UEA2, UIA2, 128-EEA1 and 128-EIA1
  • Fully synchronous design
  • Low Speed, High Speed versions
Introduction to Side-Channel Attacks eBook

Introduction to Side-Channel Attacks

Side-channel attacks conducted against electronic gear are relatively simple and inexpensive to execute. Such attacks include simple power analysis (SPA) and Differential Power Analysis (DPA). As all physical electronic systems routinely leak information, effective side-channel countermeasures should be implemented at the design stage to ensure protection of sensitive keys and data.

Download eBook

From the blog

Resources

News

Related Papers

Related Markets & Applications

AI & Machine Learning
Automotive
Edge
Government
IoT

ZUC-IP-48

ZUC-IP-48 3GPP ZUC Accelerators

Contact Us

The ZUC-IP-48 (EIP-48) cipher accelerators implement the specification of the 3GPP Confidentiality and Integrity Algorithms as specified by 3GPP and ETSI. Designed for fast integration, low gate count and full transforms, the ZUC-IP-48 accelerator provides a reliable and cost-effective embedded IP solution that is easy to integrate into high speed SoCs for base stations or other equipment requiring 3GPP support.

Contact Us IconContact

3GPP ZUC-48 family of accelerators.

Available in 3 configurations / performance grades.

Targeting Base Station designs.

How the ZUC-IP-48 3GPP ZUC Accelerators work

The ZUC-IP-48 is a family of the cryptographic library elements in the Rambus hardware IP library (formerly of Inside Secure). For example, the ZUC-IP-48 is the cipher core embedded in some PacketEngine-IP-97/196/197 protocol aware security engines. The accelerators include I/O registers, encryption and decryption cores, and the logic for feedback modes and key scheduling.

Sustained performance for any object sizes ranges from 4 to 20 Gbps depending on the configuration, area and frequency. Gate count is 20K to 30K gates depending on the configuration. Supported modes: 128-EEA3 and 128-EIA3

Rambus also offers accelerators for the other 3GPP algorithms.

ZUC-IP-48 3GPP ZUC Accelerators
ZUC-IP-48 3GPP ZUC Accelerators
Watch Anti-Tampering Technologies Webinar

Anti-Tampering Technologies

The design of chip anti-tamper protection needs to adapt and scale with rising threats. Adversaries range from high school hackers to well-funded state actors. Given the threats, it’s useful to think about anti-tamper countermeasures as a hierarchy of safeguards that parallel the type, effort and expense of attacks. Watch this webinar to learn the eleven kinds of tampering attacks and their required skills and resources, and countermeasures for each of these attacks.

Watch Webinar

ZUC-IP-48 Information

Key benefits:

  • Silicon-proven implementation
  • Fast and easy to integrate into SoCs
  • Flexible layered design
  • Complete range of configurations.
  • World-class technical support
 

Features:

  • Wide bus interface (32-bit data, 128-bit keys) or 32-bit register interface.
  • Includes key scheduling hardware
  • Supported modes: 128-EEA3 and 128-EIA3
  • Fully synchronous design
  • Low Speed, High Speed versions
Introduction to Side-Channel Attacks eBook

Introduction to Side-Channel Attacks

Side-channel attacks conducted against electronic gear are relatively simple and inexpensive to execute. Such attacks include simple power analysis (SPA) and Differential Power Analysis (DPA). As all physical electronic systems routinely leak information, effective side-channel countermeasures should be implemented at the design stage to ensure protection of sensitive keys and data.

Download eBook

From the blog

Resources

News

Related Papers

Related Markets & Applications

AI & Machine Learning
Automotive
Edge
Government
IoT

ChaCha-IP-13

ChaCha-IP-13 ChaCha20 Accelerators

Contact Us

The ChaCha-IP-13 (EIP-13) is an IP solution for accelerating the ChaCha20 cipher algorithm (RFC7539), supporting the NIST CTR mode up to 12.8 Gbps @ 300MHz. Designed for fast integration, low gate count and full transforms, the ChaCha-IP-13 accelerator provides a reliable and cost-effective embedded IP solution that is easy to integrate into high-speed crypto pipelines.

Contact Us IconContact

ChaCha20 family of accelerators.

Available in three configurations / performance grades.

Supporting TLS1.3 IoT HomeKit.

How the ChaCha-IP-13 ChaCha20 Accelerators work

The ChaCha-IP-13 is a family of the cryptographic library elements in the Rambus hardware IP library (formerly of Inside Secure). For example, the ChaCha-IP-13 is the cipher core embedded in the VaultIP root of trust security cores providing support for TLS1.3 and HomeKit IoT applications (ChaCha20 is also available as SW implementation in VaultIP cores). The accelerators include I/O registers, encryption and decryption cores, and the logic for feedback modes and key scheduling.

Sustained performance for any object sizes ranges from 2 to 12.8 Gbps depending on the configuration and area. Gate count is around 30K gates depending on the configuration.

Rambus also offers the required Poly1305 algorithm to match the ChaCha20 cipher in HomeKit.

CHACHA-IP-13 ChaCha20 Accelerators
CHACHA-IP-13 ChaCha20 Accelerators
Watch Anti-Tampering Technologies Webinar

Anti-Tampering Technologies

The design of chip anti-tamper protection needs to adapt and scale with rising threats. Adversaries range from high school hackers to well-funded state actors. Given the threats, it’s useful to think about anti-tamper countermeasures as a hierarchy of safeguards that parallel the type, effort and expense of attacks. Watch this webinar to learn the eleven kinds of tampering attacks and their required skills and resources, and countermeasures for each of these attacks.

Watch Webinar

ChaCha-IP-13 Information

Key benefits:

  • Silicon-proven implementation
  • Fast and easy to integrate into SoCs
  • Flexible layered design
  • Complete range of configurations
  • World-class technical support
 

Features:

  • Wide bus interface (512-bit data, 256-bit keys) or 32-bit register interface
  • Key sizes: 128 and 256 bits
  • Includes key scheduling hardware
  • Feedback mode CTR. 

  • Low speed (High Frequency), Medium Speed, High Speed versions
  • Fully synchronous design
Introduction to Side-Channel Attacks eBook

Introduction to Side-Channel Attacks

Side-channel attacks conducted against electronic gear are relatively simple and inexpensive to execute. Such attacks include simple power analysis (SPA) and Differential Power Analysis (DPA). As all physical electronic systems routinely leak information, effective side-channel countermeasures should be implemented at the design stage to ensure protection of sensitive keys and data.

Download eBook

From the blog

Resources

News

Related Papers

Related Markets & Applications

AI & Machine Learning
Automotive
Edge
Government
IoT

ARC4-IP-44

ARC4-IP-44 ARC4 Stream Cipher Accelerators

Contact Us

The ARC4-IP-44 (EIP-44) is IP for accelerating the ARC4 stream cipher algorithm (used for legacy SSL & IPsec) up to 5 Gbps @ 600MHz. Designed for fast integration, low gate count and full transforms, the ARC4-IP-44 accelerator provides a reliable and cost-effective embedded IP solution that is easy to integrate into high-speed crypto pipelines.

Contact Us IconContact

ARC4 family of accelerators

Available in several configurations / performance grades

Library element for security packet engines

How the ARC4-IP-44 ARC4 Stream Cipher Accelerators work

The ARC4-IP-44 is a family of the cryptographic library elements in the Rambus hardware IP library (formerly of Inside Secure). The accelerators include I/O registers, encryption and decryption cores, and the logic for feedback modes and key scheduling.

Sustained performance for any object sizes ranges up to 5 Gbps depending on the configuration and area. Gate count is about 7K to 32K gates depending on the configuration.

Rambus also offers the AES-IP-39 that supports AES modes and can be provided with countermeasures including ones against side-channel attacks and fault injection attacks.

ARC4-IP-44 legacy ARC4 accelerators
ARC4-IP-44 legacy ARC4 accelerators
Watch Anti-Tampering Technologies Webinar

Anti-Tampering Technologies

The design of chip anti-tamper protection needs to adapt and scale with rising threats. Adversaries range from high school hackers to well-funded state actors. Given the threats, it’s useful to think about anti-tamper countermeasures as a hierarchy of safeguards that parallel the type, effort and expense of attacks. Watch this webinar to learn the eleven kinds of tampering attacks and their required skills and resources, and countermeasures for each of these attacks.

Watch Webinar

ARC4-IP-44 Information

Key benefits:

  • Silicon-proven implementation
  • Fast and easy to integrate into SoCs
  • Flexible layered design
  • Complete range of configurations
  • World-class technical support
 

Features:

  • Wide bus interface (32-bit data, 128-bit keys) or 32-bit register interface
  • Key sizes: 40 and 128 bits
  • Fully synchronous design
 

Alternatives:

  • AES-IP-32 AES ECB accelerators
  • AES-IP-36 AES ECB/CBC/CTR accelerators
  • AES-IP-37 AES Key Wrap accelerators
  • AES-IP-38 AES XTS/GCM accelerators
  • AES-IP-39 AES ECB/CBC/CTR/CCM/GCM accelerators
Introduction to Side-Channel Attacks eBook

Introduction to Side-Channel Attacks

Side-channel attacks conducted against electronic gear are relatively simple and inexpensive to execute. Such attacks include simple power analysis (SPA) and Differential Power Analysis (DPA). As all physical electronic systems routinely leak information, effective side-channel countermeasures should be implemented at the design stage to ensure protection of sensitive keys and data.

Download eBook

From the blog

Resources

News

Related Papers

Related Markets & Applications

AI & Machine Learning
Automotive
Edge
Government
IoT
Rambus logo