RT-645 Embedded Hardware Security Module (HSM) for Automotive ASIL-D
Overview
Rambus Hardware Root of Trust RT-645 is a fully-programmable hardware security core that protects against a wide range of attacks with state-of-the-art anti-tamper and security techniques. As the connected nature of automobiles evolves, device architects face a growing array of emerging security threats. Whether V2X, ADAS, infotainment, or other applications, one constant in automotive design is the need for a hardware root of trust based security implementation. The Rambus RT-645 is the ideal security co-processor for automotive uses. Based on a custom 32-bit RISC-V siloed and layered secure co-processor, along with dedicated secure memories, the RT-645 features a number of high-capability cryptographic accelerators like AES-AE-16, HMAC 512, RSA 4K, ECC 521, Fast DMA, Whirlpool and a NIST-compliant Random Bit Generator. Satisfying use cases such as secure boot, EVITA HSM, and protection of propriety algorithms, the ISO-26262 ASIL-D ready RT-645 is ideally suited for automotive applications where security is a top priority.
Key Features
- Custom-designed 32-bit RISC-V secure processor
- Security model include hierarchical privilege model, secure key management policy, hardware-enforced isolation/access control/protection, error management policy
- Standard hardware cryptographic accelerators, including AES (all modes), HMAC, SHA-2 (all modes), RSA up to 4096 bits, ECC up to 521 bits, a NIST-compliant Random Bit Generator, AXI Multi Issue Out-of-Order, and Fast DMA capability. Additional algorithms such as Whirlpool (SHE), SHA-1 (legacy), AES-CMAC, SHA-3, Poly1305, ChaCha and OSCCA SM2-3-4 are available
- Multi-layered security model protects all core componentsagainst a wide range of attacks
- Includes a wide range of security modules, including True Random Number Generator, Canary logic for protection against glitching and overclocking, secure key derivation and key transport, life cycle management, secure test and debug, feature management
Benefits
- Hardware root of trust employing a custom RISC-V secure processor
- Secure in-core processing and industry-leading anti-tamper
- Multi-layered security model provides protection of all components in the core
- FIPS 140-2 & 140-3 CAVP compliant
- FIPS 140-2 & 140-3 CMVP compliant
Block Diagram
Applications
- Automotive
Deliverables
- Verilog RTL Design database
- Tools and Scripts for synthesis and simulation
- Complete verification test bench and comprehensive set of test vectors
- Complete Documentation Set: Hardware Reference Manual, Integration Guide, HLOS Programmer’s Guide, Developer’s Guide, API Guide
- Boot loader and firmware, including secure RTOS and security monitor
- HLOS APIs for accessing capabilities
- Secure Application SDK with complete development environment, including compiler, assembler, debugger, simulator, reference code, container-authoring software
- QEMU implementation
- Implementation of HLOS or ASIC components
- Sample application demonstrating usage of Secure Application
Technical Specifications
Foundry, Node
Any
Maturity
In Production
Availability
Now
Related IPs
- RT-640 Embedded Hardware Security Module (HSM) for Automotive ASIL-B
- Secure-IC's Securyzr™ Hardware Security Module (HSM) for Automotive
- Hardware Security Module (HSM)
- Power efficient, high-performance neural network hardware IP for automotive embedded solutions
- RT-650 DPA-Resistant Hardware Root of Trust Security Processor for Govt/Aero/Defense FIPS-140
- 10G-100G MACsec Security Module for Ethernet