The CryptoManager Root of Trust RT-650 is a fully-programmable, FIPS 140-2 CMVP-certified hardware security core offering security by design. It protects against a wide range of attacks with state-of-the-art anti-tamper and security techniques.
Featuring all the capabilities of the RT-620, the RT-650 adds FIPS 140-2 CMVP certification for applications like defense, IoT, and others where compliance is required by law or by end customers. As with all CryptoManager Root of Trust 600-series products, the RT-650 features a custom 32-bit RISC-V siloed and layered secure co-processor, along with dedicated secure memories. This RISC-V based core is the ideal location for the execution of secure processes within an SoC or FPGA. A number of upgraded standard crypto accelerators are included such as AES-AE-16, HMAC 512 & SHA-2, RSA 4K, ECC 521, and a NIST-compliant RBG. The RT-650 is ideal for designs where FIPS 140-2 CMVP certification is required, security is a high priority but silicon space is at a premium.
The CryptoManager Root of Trust is an independent hardware security co-processor for integration into semiconductor devices, offering secure execution of user applications, tamper detection and protection, and secure storage and handling of keys and security assets. The Root of Trust offers chipmakers a siloed approach to security; while located on the same silicon as the main processor, the secure processing core is physically separated. A layered security approach enforces access to crypto modules, memory ranges, I/O pins, and other resources, and assures critical keys are available through hardware only with no access by software.
Offering true multiple root of trust capabilities, each individual application can be assigned its own unique keys, meaning permissions and access levels are set completely independent of others. OEMs can determine access levels and permissions for each and all processes operating within the secure processor. Applications are siloed from each other, ensuring the best approach to security.
Included with the RT-650 Hardware Root of Trust are a series of standard secure applications (“containers”) to speed development, including secure boot, identity management, HSM reference, and others. A container development kit is also included to allow the development of custom containers for specific use cases.
Part of the comprehensive CryptoManager Security Platform that includes embedded cores, key provisioning infrastructure and infield services, the Root of Trust provides the highest level of end-to-end security at all stages of the chip lifecycle.
File encryption, file system encryption and full disk encryption (FDE) are methods offered by the industry to allow users to protect their data stored on non-volatile storage devices, such as Solid State Disks (SSD). The main feature of FDE is to protect stored system and user date from unauthorized reading, writing, alteration, moving or rolling back. However, extended security features are key to securing FDE implementation.