AppliedMicro Trusted Management Module
•
Majid Bemanian, Sr. Director of Marketing,
•
Applied Micro Processor Business Unit
•
July 12, 2011
Cele
brati
ng 2
0
th
Ann
iver
sary
of Po
wer
Arch
itectu
re
AppliedMicro (APM) at a Glance
Headquarters:
Sunnyvale, CA
Global Footprint:
N.A., Europe, Asia
Employees:
607
Market-cap:
$612M
Ticker:
AMCC
Reduce Latency Integrated Offload, QM/TM
PACKETPRO Feature Summary
Bandwidth Explosion
Video
Social Networking Device Explosion
Converged Networks
Users & Data on the Move Access any data, any device
Energy Management
PoE
Energy Efficient Ethernet
High Availability AMP through SLIMPRO™
End to End Security Cryptographic Boundary
Concurrency & Independency Multi-Core AMP, SLIMPRO™
Extend Power Management SLIMPRO™
Deterministic Behavior QM/TM, Offloads
Processor Requirements
Market Drivers
Backplane / Redundant Switch Fabric
Typical Enterprise System
NPU /
Data Plane
Processors
Mem Mem
Management Processor
8+ Cores 2.5+ GHz Backplane
Serdes
DDR
DDR DDR
DDR
Routing Tables
Switch Fabric (XBar)
Control Plane 1.0+ GHz 2-4 Cores
Line Module Management
Module
Line Module
Fiber / Copper
2-5 cards
Mem Mem
ASIC /
ASSP /
Soft Silicon
Mem Mem
Fiber / Copper
Mem Mem
10/40/100 10/40/100 10/40/100 10/40/100 Control Plane
1.0+ GHz 2-4 Cores
Payload Security Platform Security
PACKETPRO Multi-Core Processor Family
DDR2/3, 1600Mbps
MutiCore High Speed I/O Traffic Off-loads & Management
Manager Classifier
Interrupts MPIC Packet
DMA
Security Engine
Queue Manager
SLIM
PRO™
Packet Parser, Crypto Engine. RTC, PKA/TRNG, SecRAM, EFUSE PCIe G2
SATA
GE
(EEE)
Classifier
32b 465 PPC 1.5GHz
256KB L2
Non-blocking Bridge Fabric Non-blocking
GPIO
SPI UART LCD CNTRL
I2C USB2.0
JTAG Trace
Clocks Flash IO
Memory Queue
16/32/64 bit Memory Controller w/ ECC
PPC Mailbox 32b 465
PPC 1.5GHz
256KB L2
Standard IO
PACKET
PRO
Unique Differentiators
Crypto Boundary
Power Management
Hierarchical Offloads
High Availability
& Concurrency
Secure Boot
Crypto Engine
Soft SKU Protected
Private Keys
Independent Boot OS / Code Protection
Resource Virtualization
Crash Recovery/
Fail Over
Look-aside Security & Classification
IPsec MACsec
In-Line Classification
QM/TM WoX
Wake on LAN, USB, GPIO,
Dynamic Freq. Scaling
Energy Efficient Ethernet Standby Power mode
Multi-Layered Security
Crypto Offlaod
In-Line Security
Packet Pro
SoC
Look aside Security Inline IPSec
AES-GCM; AES-GMACTunnel and Transport modeESP Encryption and Authentication IPv4 and IPv6
Security Associations Wire speed operation
Crypto Engine
AES-GCM, AES-CBC modes of encryption AES-GMAC of authentication
SHA1 engine for hash generation
PKA
High Performance large-vector arithmetic functions Unsigned value modular exponentiation
Including Chinese Remainders Theorem (CRT)
Modular inversion
ECC point addition/doubling on elliptic curve ECC point multiplication on elliptic curve AES-GCM, AES-CBC modes of encryption
TRNG
ANSI X9.17 Annex C
Encryption Algorithm
DES, 3DES, AES-128/192/256, ARC4
Hash Algorithm
SHA-1/ 224/ 256/ 384 /512 AES-XCBC-MAC
GHASH
SSL /TLS /DTLS MACSec
SLIMPRO™
SLIM
PROApplication
Description
Power
Management
Ultra Fine SoC Frequency, Voltage and feature control. 200mW to full operation.
Secure Boot Authenticate OS, System S/W and Loader. Real-time Security Agent
Trusted
Management Module
On-chip protected Private / Public storage; Crypto Engine. Tamper Detection and Response
Secure Debug Secure remote monitoring, debug, update and reporting
Concurrent & Secure AMP
Secure domain protection. Concurrent and independent MultiCore operation
Gated and guarded from any on-chip or external access / attacks Secure connections to remote agents
32bit Processor
Mail Box& Gateway
I/D RAM ROM I2C GPIO Crypto Security Engine
PKA/ TRNG
NV Storage RTC
Secure Green Zone
Secure Ethernet Traffic MultiCore
SoC Fabric
Scalable Light-weight Intelligent Management Processor
embedded in a Secure Green Zone
APM Trusted Management Module (TMM)
Security Measure
Protecting Against
Encrypted Image
Using symmetric bulk decryption provide code secrecy
Secure Boot
Leveraging PKA hardware acceleration authentic the origin and
the integrity of the image before execution
Secure Communication
Communicate with a remote host using secure communications
Runtime Integrity Check
Perform checks on system in order to reduce attack surface area
Secure Software Updates
Decrypt and authenticate new software images before updating
Secure Debug
Remote management and debug
Hardware Integrity
Authenticate System Components
Securely store keys, passwords and digital certificates
to support Platform Integrity and Privacy
SLIM
PRO
™ Trusted Management Module
Dedicated Secured Processor Core for Embedded Security
Levels of
Security
Offerings
Secure Protected Tamper-Proof Zone Protected Real Time Clock
Cryptographic Boundary
Secure BootDecrypt & Authentication Secure Communication
Code Authentication Flow
Tamper DetectionDetection of Violations or Breaches
Runtime Integrity Check
Tamper Response
Secure, Protected DRAM OperationMemory
I/O
Hardware
Offloads
Processor
Core(s)
GE/10GE PCIe Gen I/II USB
SATA
DDR3
NAND/NOR
Security Classifier
Queue Manager Traffic Manager
Securing the borders
I2C Controller
NV Storage
Crypto Engine
RAM
CPU
ROM
RTC PKA/
TRNG Bridge
(Fence)
DDR3
Flash
Symmetric Boot
SLIMpro
Common System Configuration
Secure Perimeter
Configure Clock and Power Supply Bridge Initialization
Init QM, MPIC Init
Unencrypted / Authenticate Boot Loader Take PPC0 & PPC1 out of Reset
OS Independence Independent Boot process
CPU cores operate independent of SoC peripherals Reset of one CPU doesn t effect the other
Interrupts are routable through MPIC
PPC0
L2
UART1 GE 1 USB 1
PPC1
L2
UART2 PCIe USB 2
DDR3
Boot Source
Code Protection – Symmetric bulk decryption
Begin Boot Process Boot Standard SLIMpro Boot Power PCCore(s) SLIMpro Exec. Code From on-chip ROM Load Encrypted Image from Boot Device Decrypt & Authenticate SLIMpro Image
Load Image to SLIMpro Instruction RAM
Jump to Authenticated Code Execution
Load & Lock SoC Configuration
Load Encrypted PPC Boot Image
Decrypt & Authenticate Image E-Fuse Configured Fail Action Authentication
Pass? Configured E-Fuse
Fail Action N Y Y N Authentication Pass? N Y
Se
cu
re
C
o
d
e
V
al
id
ati
o
n
&
d
ec
ry
p
ti
o
n
B
o
o
t
L
o
ad
er
V
al
id
ati
o
n
Boot Power PC Core(s) E-Fuse
Secure Boot Enable
Secure Loader
ICV Cipher
ICV Cipher
ICV Cipher
ICV Cipher
ICV Cipher
ICV Cipher
1st Stage
Boot Loader 2nd Stage
Boot Loader
Encrypted Flash
SLIMpro Secure RAM
On-Chip-Memory
(JTAG Disabled)
(1)
(2)
(3)
E FFFF FFFC
DDR3
(4)
(5)
(6)
2nd Stage BL
(1) block Copy
(2) Build1st Stage BL
(3) Point PPC Reset Vector (4) Copy 2nd Stage BL
(5) Decrypted 2nd Stage BL
(6) Jump to 2nd Stage BL
Packet Pro
PPC
PPC
OS / Application Loader
ICV Cipher ICV Cipher ICV Cipher ICV Cipher Header ICV Cipher ICV Cipher Encrypted Flash Packet ProSLIMPro
SecureSRAM Engine Crypto
PPC
PPC
Block Block Block DDR3 Mail Box Mail Box Messages O S Ima ge O S Ima ge Header Ap pl ica tio n Ima ge (s) Block Block Block Ap pli ca tio n I ma ge (s)Run Time Integrity Check
DMA OS image to SLIMpro Secure RAM
Generate ICV per block
Compare Generated ICV with Flash ICV
Create Exception or Pass
ICV Cipher
ICV Cipher
ICV Cipher
Flash Packet Pro
SLIMPro
Secure
SRAM Engine Crypto
PPC
PPC
Block (0) Block (1)
Block (m)
DDR3
Messages
O
S
Ima
ge
O
S
Ima
ge
Timer
ICV
O
S
Ima
ge
Mail Box
Mail Box
Reduce Latency Integrated Offload, QM/TM
PACKETPRO Feature Summary
Bandwidth Explosion
Video
Social Networking Device Explosion
Converged Networks
Users & Data on the Move Access any data, any device
Energy Management
PoE
Energy Efficient Ethernet
High Availability AMP through SLIMPRO™
End to End Security Cryptographic Boundary
Concurrency & Independency Multi-Core AMP, SLIMPRO™
Extend Power Management SLIMPRO™
Deterministic Behavior QM/TM, Offloads
Processor Requirements
Market Drivers
Questions & Answers
Thank you!
Cele
brati
ng 2
0
th
