Designed to be integrated in power and space-constrained SoCs or FPGAs, the RT-131 Root of Trust (formerly VaultIP) is a FIPS 140-3 compliant hardware core that guards the most sensitive assets on chips and establishes the foundation for platform security.
Featuring a firmware-controlled architecture with dedicated secure memories, the RT-131 hardware Root of Trust provides a variety of cryptographic accelerators including AES, SHA-2, OSCCA SM2/SM3/SM4, RSA and ECC. Ideal for power and space-sensitive applications like Chinese IoT server, gateway and edge devices, the RT-131 Root of Trust offers the best balance of size and performance available on the market.
The RT-131 offers a series of key security use cases ‘out of the box’, including:
- Secure Boot assist to host CPU(s) and protection of key material
- Secure firmware upgrade management for Host CPU
- Lifecycle management support
- Secure Debug support
- Secure device authentication and identity protection
The RT-131 provides a secure asset store:
- Only the RT-131 can manage, use and access the assets
- The O/S and applications cannot access key values
- Applications request asset use by reference
- Enforces policies for access and use of keys and cryptographic functions
- Key generation, derivation, storage and transport
| Feature | Description | Details |
| FIPS 140-3 | CAVP and CMVP Compliant | Includes CAVP certificates for NIST approved algorithms and TRNG |
| Cipher Algorithm Support | AES (all key sizes) SM4 (128-bit key) Optional: ChaCha20, ARIA |
Modes: CBC, CTR, CCM, CMAC, GCM, XTS Modes: CBC, CTR, GCM ARIA Modes: CBC, CTR, CMAC, CCM, GCM |
| Hash Algorithms | SHA-1, SHA-2 SM3 Optional: SHA-3 |
SHA-2 224-256-384-512 SHA-3 224-256-384-512 |
| Message Authentication Code Algorithms | HMAC-SHA-1, HMAC-SHA-2, HMAC-SM3 Optional: HMAC-SHA3 |
SHA-2 224-256-384-512 SHA-3 224-256-384-512 |
| AEAD Algorithms | AES-GCM, AES-GMAC, AES-CCM Optional: ChaCha20/Poly1305, ARIA-CCM |
Modes: GCM, GMAC, CCM |
| Signature Generation and Verification | ECDSA EdDSA SM2DSA RSA up to 3096 bits |
NIST P-224, P-256, P-384, P-521 Ed25519 |
| Key Agreement Algorithms | ECDH DH EdDH |
NIST P-224, P-256, P-384, P-521 Up to 3096 bits Curve25519 |
| Key Transport Algorithms | ECIES RSA Wrap/Unwrap (RSA-OAEP) SM2-WRAP AES-WRAP SM4-WRAP |
128- and 256-bit strength Up to 3096 bits128- and 256-bit strength 128-bit strength |
| True Random Number Generator | NIST SP800-90A/B/C | NIST ENT certificate |
| Crypto Performance | Cipher/Hash Performance (Gbps) @500MHz | Scalable, ~2 Gbps |
| I/O Bus | AMBA Bus Master/Slave | AXI/AHB Master, AXI/AHB/APB Slave |
| OTP Interface | Interface to 3rd-Party OTP | TCM |
