LONDON – Three years on from an announcement that NXP would add hardware intrinsic security to its SmartMX range of secure microcontrollers the company has prepared a demonstration of the technology in a test chip. The company added that it will be the first company to bring to market smartcard and embedded secure element chips that integrate Intrinsic-ID's physically unclonable function (PUF) technology.
NXP (Eindoven, The Netherlands) has announced it will demonstrate the PUF security function in a SmartMX2 microcontroller test chip at the Mobile World Congress in Barcelona, Feb. 25 to 28. The demo will include Intrinsic-ID's Saturnus secure-cloud application.
Intrinsic-ID's hardware intrinsic security (HIS) makes use of unique characteristics particular to each IC to derive encryption keys. This allows a device to generate a secret key only when needed and power down with no key present. It is available in all modern technology nodes and is scalable with silicon area, Intrinsic-ID said. Intrinsic-ID, like NXP, was formed as a spin-off from Koninklijke Philips Electronics NV (Amsterdam, The Netherlands).
A typical method of implementation might be a series of metastable SRAM bits that make up an ID word. Each bit is, in terms of design, equally likely to boot up as a 1 or a 0. But variations in silicon manufacture mean that the actual condition at startup is repeatable but specific to each die. As such, this content after start-up can serve as a unique fingerprint, which can then be used as a key to protect an encryption key or to protect a memory.
SmartMX microcontrollers are 8-bit 8051-based MCUs with numerous security features making the cards suitable for ID cards, secure access control, trusted platform modules, Pay-TV, travel ticketing. SmartMX2 microcontrollers extend the architecture up to 32-bits although it is not clear whether the instruction set is proprietary or based on a licensed architecture.
By integrating Intrinsic-ID's PUF technology into its secure microcontroller SmartMX2, NXP improves the chips security for such applications as NFC-enabled mobile payment, electronic ticketing, and eGovernment and cyber security services.
"Adding PUF technology to SmartMX2 chips helps to alleviate user doubts as we bring more security and trust to smart life solutions and provide our customers with a key competitive edge. As such, we’re very happy to have entered into this contract with Intrinsic-ID, the undisputed leader in PUF," said Ruediger Stroh, general manager of the identification business unit at NXP, in a statement.
Cool technology...I am not sure I understand KRS03 how the power up sequence can change in a lifetime of the product...presumably there is a recommended sequence for this and chip controls it to some extent too
I'm sure that "a series of metastable SRAM bits" is oversimplifying the design significantly. The ID must not change over the lifetime of the part and over a variety of power-up conditions and temperatures.
David Patterson, known for his pioneering research that led to RAID, clusters and more, is part of a team at UC Berkeley that recently made its RISC-V processor architecture an open source hardware offering. We talk with Patterson and one of his colleagues behind the effort about the opportunities they see, what new kinds of designs they hope to enable and what it means for today’s commercial processor giants such as Intel, ARM and Imagination Technologies.