Transcript Board ID - Renesas e-Learning

ID 911C: Case studies for Embedded Security
Renesas Electronics America Inc.
D. Pochet
Manager, Marketing Security Products
14 October 2010
© 2010 Renesas Electronics America Inc. All rights reserved.
Rev 1.0
Mr. Denis Pochet
 Sr Product Marketing Manager, Secure MCU
 Responsible for Marketing, Business Development
and Product Management within REA –
Consumer & Industrial group.
PREVIOUS EXPERIENCE:
 Eleven years in Smart card industry (dual interface (Contact/Cless) for
ID & Banking) and Digital Security (Embedded Systems (PCI-PED POS,
FIPS140-2 Authentication device,..)).
 Expertise in Security solutions: security IC, software applications, PKI
technology and provisioning solutions
 Master degree in computer sciences from “Ecole des Mines de St
Etienne” University (France)
2
© 2010 Renesas Electronics America Inc.
All rights reserved.
Renesas Technology and Solution Portfolio
Microcontrollers
& Microprocessors
#1 Market share
worldwide *
ASIC, ASSP
& Memory
Advanced and
proven technologies
Solutions
for
Innovation
Analog and
Power Devices
#1 Market share
in low-voltage
MOSFET**
* MCU: 31% revenue
basis from Gartner
"Semiconductor
Applications Worldwide
Annual Market Share:
Database" 25
March 2010
** Power MOSFET: 17.1%
on unit basis from
Marketing Eye 2009
(17.1% on unit basis).
3
© 2010 Renesas Electronics America Inc.
All rights reserved.
Renesas Technology and Solution Portfolio
Microcontrollers
& Microprocessors
#1 Market share
worldwide *
Solutions
for
Innovation
ASIC, ASSP
& Memory
Advanced and
proven technologies
Analog and
Power Devices
#1 Market share
in low-voltage
MOSFET**
* MCU: 31% revenue
basis from Gartner
"Semiconductor
Applications Worldwide
Annual Market Share:
Database" 25
March 2010
** Power MOSFET: 17.1%
on unit basis from
Marketing Eye 2009
(17.1% on unit basis).
4
© 2010 Renesas Electronics America Inc.
All rights reserved.
Microcontroller and Microprocessor Line-up
Superscalar, MMU, Multimedia
High Performance CPU, Low Power
High Performance CPU, FPU, DSC
 Up to 1200 DMIPS, 45, 65 & 90nm process
 Video and audio processing on Linux
 Server, Industrial & Automotive
 Up to 500 DMIPS, 150 & 90nm process
 600uA/MHz, 1.5 uA standby
 Medical, Automotive & Industrial
 Up to 165 DMIPS, 90nm process
 500uA/MHz, 2.5 uA standby
 Ethernet, CAN, USB, Motor Control, TFT Display
 Legacy Cores
 Next-generation migration to RX
General Purpose
 Up to 10 DMIPS, 130nm process
 350 uA/MHz, 1uA standby
 Capacitive touch
5
© 2010 Renesas Electronics America Inc.
All rights reserved.
Ultra Low Power
Embedded Security
 Up to 25 DMIPS, 150nm process  Up to 25 DMIPS, 180, 90nm process
 190 uA/MHz, 0.3uA standby
 1mA/MHz, 100uA standby
 Application-specific integration  Crypto engine, Hardware security
Microcontroller and Microprocessor Line-up
 Up to 1200 DMIPS, 45, 65 & 90nm process
Superscalar, MMU, Multimedia
Embedded Security
 Video and audio processing on Linux
 Server, Industrial & Automotive
High Performance CPU, Low Power
High Performance CPU, FPU, DSC
 Up to 500 DMIPS, 150 & 90nm process
 600uA/MHz, 1.5 uA standby
 Medical, Automotive & Industrial
 Up to 165 DMIPS, 90nm process
 500uA/MHz, 2.5 uA standby
 Ethernet, CAN, USB, Motor Control, TFT Display
 Legacy Cores
 Next-generation migration to RX
General Purpose
 Up to 10 DMIPS, 130nm process
 350 uA/MHz, 1uA standby
 Capacitive touch
6
© 2010 Renesas Electronics America Inc.
All rights reserved.
Ultra Low Power
Embedded Security
 Up to 25 DMIPS, 150nm process  Up to 25 DMIPS, 180, 90nm process
 190 uA/MHz, 0.3uA standby
 1mA/MHz, 100uA standby
 Application-specific integration  Crypto engine, Hardware security
Innovation
Anti-cloning protection
Server
Extended
boards
Router
PKI Strong Mutual
authentication
7
© 2010 Renesas Electronics America Inc.
All rights reserved.
Renesas Board ID Solution
Renesas Board ID solution is ideally suited for applications
needing strong authentication and for web connected devices.
Renesas, in partnership with Avnet, provides a unique and
complete solution to Embedded Systems vendors of any size to
deploy cost effectively this powerful PKI authentication
technology.
8
© 2010 Renesas Electronics America Inc.
All rights reserved.
Agenda
 Renesas in the Security IC market
 Authentication basics
 Board ID security
 Board ID use case examples
 Board ID solution support
 Q&A
9
© 2010 Renesas Electronics America Inc.
All rights reserved.
Key Takeaways
By the end of this session you will be able to:
 Understand Renesas position in the security IC market
 Know the basic about authentication
 Sell the benefits of a strong security technology to your
customers and to your company management
 Understand how to implement a strong authentication with
Renesas solution
10
© 2010 Renesas Electronics America Inc.
All rights reserved.
Security application examples: everywhere!
Authentication
< Closed system >
Router Switch
Authentication
Through Network
< Open system >
USB Key
Server
Battery
ETC
Storage
EFTPOS
Medical
Ink Cartridge
PC
NFC
payment
STB/DVR
Bank card
SIM
Enterprise
Consumer
Electronics
11
© 2010 Renesas Electronics America Inc.
All rights reserved.
SIM card
Renesas in the Secure MCU market
General
Promotion
Selected OEM support only
RS4 Series
RS4X Series*
NFC Series*
AE5 Series
N Series
• Embedded
interface (I2C)
• Small package
12
* Under
development
AE4 Series
AE41R
M to M
Authentication
Contact
Smart Card
Contactless
Smart Card
Embedded
Banking, ID card
© 2010 Renesas Electronics America Inc.
All rights reserved.
Banking card
NFC
Mobile Phone
Renesas in the Secure IC market
3 B milestone
ETC SAM : Electric Toll Collection Secure Authentication Module
M to M : Machine to Machine
M to M
Authentication
Contactless Card
SIM
ETC SAM
GSM, 3G SIM Card
Banking Card (Visa, MasterCard, Debit card)
1980
13
© 2010 Renesas Electronics America Inc.
All rights reserved.
1990
2000
2009
2010
From simple ID to strong authentication
Small
groups
Larger
society
Networked
society
Today
User
SIM
Strong user authentication
Name
14
Name + ID
© 2010 Renesas Electronics America Inc.
All rights reserved.
Authentication
From simple ID to strong authentication
Small
groups
Larger
society
Networked
society
Today
User
Strong user authentication
SIM
M2M
M2M Authentication app. opportunities
15
© 2010 Renesas Electronics America Inc.
All rights reserved.
Hacks can affect almost any product
POOR SECURITY
=
HIGH RISK
16
© 2010 Renesas Electronics America Inc.
All rights reserved.
www.HackADay.com
Benefits of a design with Strong Security
Protection against:





Liability
Breach of License & Brand
Revenue Loss
Unfair Competition
…
and improved credibility with partners and customers
Security MUST be designed in!
17
© 2010 Renesas Electronics America Inc.
All rights reserved.
Symmetric key architecture
A: Who are you?
B: I am Bob
Rely on
shared ‘secret’
among parties
A: Prove it to me by
responding to my
question ( if you know
my secret you’ll be
able to respond )
RISK:
The Secret MUST be stored
In a tamperproof IC, otherwise
the entire network can be
compromised as ALL share
the same secret.
18
© 2010 Renesas Electronics America Inc.
All rights reserved.
Asymmetric* key architecture
(*) also called PKI : Public Key
Infrastructure Technology
A: Who are you?
B: I am Bob
Rely on a
‘chain of Trust’
among parties
A: Prove it to me by showing
me a valid ID ( which you
received in the past and is
unforgeable ) and I will check
it is genuine
PKI strength:
Only legitimate owners of VALID
IDs will be accepted. If one device
is compromised, only that single
device is bad. ALL others are
not affected.
19
© 2010 Renesas Electronics America Inc.
All rights reserved.
Cryptographic Algorithms for Security
 SHA-1 / SHA-256 (Atmel, Maxim)
 Simple message digest
 Not “true” encryption
– Mostly used for digital signature signing
 SHA-1 not approved by US government
 Symmetrical Cryptography
 Proprietary, DES, 3DES, AES
– 64 (i.e. crypto-memory), 128, 256 bit keys
 Symmetrical keys used on both sides
– Keys must be handled with the highest security
– Sharing of common keys can lead to compromise
– Any key compromise affects every unit
 Asymmetrical Cryptography
 RSA, ECC
 1024, 2048 bit keys
 Uses public / private key pairs
– Private keys are all different
– Compromise of a single key only affects a single unit
 Can be more complex to implement
20
© 2010 Renesas Electronics America Inc.
All rights reserved.
Case Study (from a US partner)
 Background
 Large, well known camera manufacturer
 Battery Cloning Issues
– Direct Revenue Loss
– Warranty Issues
– LiIon Battery Safety Issues
 Solution
 Low cost SHA-1 based security device
 Result
 Camera firmware hacked to obtain keys
 Low cost microcontroller used to imitate security device
 Cloned batteries available within 3 months
21
© 2010 Renesas Electronics America Inc.
All rights reserved.
Web authentication – 1 (users)
Private Key + Certificate
Public Key Certificate
(Authenticator)
22
© 2010 Renesas Electronics America Inc.
All rights reserved.
(Remote service provider)
Proven with Billions of Users
Secure, Trusted Authentication Method
Conforms to IT, Internet and Enterprise
Authentication standards
Web authentication – 2 (users)
Public Key
Certificate
(Authenticator)
23
© 2010 Renesas Electronics America Inc.
All rights reserved.
Levels of security
Software security
BAD
Memory chip
security
Almost as BAD
Keys NOT protected
CPU intensive (can be
OK for PKI comp. by the host)
(encryption alone is
NOT security)
Outdated key
lengths
(like a ‘2 digits’
PIN code)
We bring proven Web user authentication
technology to Embedded Systems
24
© 2010 Renesas Electronics America Inc.
All rights reserved.
Board ID
SECURE
Strong crypto
Tamper proof
PKI for Embedded
Systems
Avnet VAS
Board ID use examples
I2C
Board ID chips
25
© 2010 Renesas Electronics America Inc.
All rights reserved.
Case 1: Anti-Cloning
 Business case
 Implementation example
 Renesas solution with Board ID
26
© 2010 Renesas Electronics America Inc.
All rights reserved.
Board ID Example 2 – Anti-Clone System
Counterfeited
routers
Router main board
Main CPU
I2C
Security storage
27
© 2010 Renesas Electronics America Inc.
All rights reserved.
Plug-in
router card
modules
Board ID
Chips
Case 2: Anti-cloning, Usage control
 Business case
 Implementation example
 Renesas solution with Board ID
28
© 2010 Renesas Electronics America Inc.
All rights reserved.
Board ID Example – Usage Control
Medical probe(s)
Medical Device unit
and probe(s)
Unalterable Usage Control info
processed by the Security chip
Doctor prescribes Treatment
(usage of probes)
 Security IC in the probe enforces the usage
prescribed (no overuse / misuse possible)
Board ID chip
Main Unit
Peripheral unit
(disposable)
Board ID
chip
Main
CPU
29
© 2010 Renesas Electronics America Inc.
All rights reserved.
I2C
Case 3: Secure Tracking, IP protection
 Business case
 Implementation example
 Renesas solution with Board ID
30
© 2010 Renesas Electronics America Inc.
All rights reserved.
Board ID Example – Protect Licensing Model
Medical system
vendor
$
Approved
Partner Co
Main Unit
accessory unit
I2C
Main
CPU
31
© 2010 Renesas Electronics America Inc.
All rights reserved.
Accessory
MCU
Board ID
chip
Board ID Solution for Medical Application
Medical Device business risks:




Liability (HIPAA)
Service Level Agreement (HIPAA)
Revenue loss (HIPAA)
Unfair competition





Increased costs of operations
License and brand protection
Credibility with partners and
customers
Security breaches (HIPAA)
Device effectiveness (HIPAA)
Medical Applications requiring strong data protection, authentication,
security (HIPAA):
Networking,
Web connected devices and systems,
Probes/devices used by patient,
Remote monitoring,
Etc
HIPAA: Health Insurance Portability and Accountability Act
HIPAA HITECH: HIPAA Health Information Technology for Economic and Clinical Health Act
32
© 2010 Renesas Electronics America Inc.
All rights reserved.
Benefits of security IC bring in a networked environment
Security features
With Security IC
No Security IC
Y
N
Y
Y (possible)
Y (possible)
Y
N
N
N
N
Y (possible)
N
Secure key/X509 cert provisioning*
Y
N
Secure remote download/upgrade*
Y
Proprietary solution
Secure connectivity to networks*
(with X 509 certificate)
Y
Proprietary solution
Strong hardware enforcement option
Y
N
Secure storage* of key (i.e. tamper
proof device)
Strong authentication*
Public key (RSA, ECC)
Symmetric key (TDES,..)
Authentication Process as per
Industry Standards
FIPS certification*
(US govt security certification)
(*) security features recommended in the NIST Cyber-security guidelines for Smart Grid
devices published in 2010
33
© 2010 Renesas Electronics America Inc.
All rights reserved.
Details on Renesas solution
 Secure IC
 Firmware and Security application
 Demo kit and reference software
 Key management and provisioning services
 Technical assistance and support
34
© 2010 Renesas Electronics America Inc.
All rights reserved.
Conventional MCU or memory chip vs. Board ID
These are only few examples: many more advanced security features are implemented in the Board ID chip
Conventional MCU or memory chip
Board ID
Current consumption is
scrambled by internal
noise generator
Attacker can read
data by monitoring
current consumption
data cannot be extracted
by current monitoring
Chip is protected with:
Attacker can capture
data by probing
metal patterns
“active” metal shield to
prevent data capture
randomized layout
Chip spec
Frequency
35
© 2010 Renesas Electronics America Inc.
All rights reserved.
Attacker can read
data under
abnormal
operating
conditions
Boundary of normal operation
Voltage
Voltage
Boundary of normal operation
On chip detectors
works
Chip spec
Frequency
On chip detectors
force to stop
operation under
abnormal conditions
BoardID Secure Products Positioning
Value of IP to be protected
High$
BoardID
N series Secure
MCUs
Med$
TPM
Low$
EEPROM
&
LF RFID
Crypto
Memory
&
CryptoRF
Low
Lab
Certified
Lab Certified
Medium
High
FIPS140-2
level3
36
© 2010 Renesas Electronics America Inc.
All rights reserved.
Security
Board ID 2.0 Specs summary
Hardware Specification
Operating Voltage
1.8V - 3.3V
Communication interface
I2C (100kHz) ( Internal oscillator )
Operating Temperature
- 20°C to +75°C
WTR option (please consult with us)
Package
QFN20 (4.2mm x 4.2mm)
Security
Physical protection
Secure manufacturing center
Secure programming process
Software Specification
37
© 2010 Renesas Electronics America Inc.
All rights reserved.
Authentication Algorithm
PKI (RSA 1024 / 2048 bits)
mutual authentication possible
Anti-Cloning
PKI (Certificate and signature verification)
Usage Control
Limit counter (1 to 4, 294, 967, 295
times)
Secure Tracking
4 bytes (32bits) of condition value
IP Protection
4 bytes (32bits) of condition value
Secure Storage
64 bytes X 8 pages (512bytes total) with
advanced protection features
Response
What are the benefits of Board ID solution
compared with Software security?
Software: CPU intensive, key NOT protected, (it may be
OK to compute PKI on the host side)
Board ID:
Complete authentication,
External to MCU with key totally protected,
Strong PKI crypto
38
© 2010 Renesas Electronics America Inc.
All rights reserved.
Response
What are the differences of a Crypto
memory Solution compared with a
Board ID solution for a customer?
Crypto memory: inexpensive, NOT protected, weak (out dated)
key length
Board ID:
Complete authentication with strong PKI crypto
Physical protection
Smart card / Secure IC technology
39
© 2010 Renesas Electronics America Inc.
All rights reserved.
Characteristics of a Secure Solution
 Must be based on strong cryptography
 Must provide for secure key storage
 Must provide a defense against physical attacks




Physical attack on bare die
Voltage
Frequency
Temperature
 Must include a secure supply chain
 Key generation / provisioning
 Device Programming
40
© 2010 Renesas Electronics America Inc.
All rights reserved.
A complete one-stop-shop solution
Standard based PKI security technology cost effective and accessible
now to vendors of all sizes (small and large) operating globally.
41
© 2010 Renesas Electronics America Inc.
All rights reserved.
Response
What services are provided by Avnet to
Board ID customers?
1- Logistics support as a Franchised distributor of the
product and the Board ID demo kit
2- PKI programming services including key/cert generation
3- Technical assistance to:
a- define the programming scheme,
b- to help authentication code porting (MCU code)
42
© 2010 Renesas Electronics America Inc.
All rights reserved.
Board ID demo kit
YBIDKITSV2
Board ID Device
Authenticator (SH7285 MCU)
1. Demo for each authentication use cases: anti-cloning, usage control,
secure tracking and IP protection
2. Authentication done between authenticator (SH7285) and Board ID
device
3. Authenticator software (Board ID Security Stack - BSS) provided for
easier porting by customers into their target MCU/MPU.
4. Low cost, $149 available from Avnet
43
© 2010 Renesas Electronics America Inc.
All rights reserved.
RDK RX62N with Board ID module
I2C Temp Sensor
3 Axis Accelerometer
Analog Devices Inc (ADI)
LEDs for Spinning Motor Simulation
On-board
Segger JLink Lite
Debug USB
Graphics Mono LCD
External Power
Micro SD Card Slot
10/100
Ethernet
Ethernet PHY with
IEEE1588
National Semi
Board ID
Connector
128M Serial Flash
USB Device
USB Host
USB OTG
3 User Switches
The Rx RDK includes a
Board ID Module
44
© 2010 Renesas Electronics America Inc.
All rights reserved.
Stereo Audio Out
(ADI) Silicon Microphone
User Pot
Application Headers
Board ID section of RTA site
http://america.renesas.com/boardid/
45
© 2010 Renesas Electronics America Inc.
All rights reserved.
Link to Avnet site
46
© 2010 Renesas Electronics America Inc.
All rights reserved.
Question
Are there issues with Export Control?
The Board ID product is designed to meet applicable Export
Control rules and regulations.
The product can be exported to foreign countries in accordance
with applicable US laws.
The customer must ensure compliance to these laws.
47
© 2010 Renesas Electronics America Inc.
All rights reserved.
Summary: Strengths of the Board ID solution
And why a customer selected Board ID recently…
1- Strong authentication (RSA 2048 Bit) with tamper-proof chip
2- Easy integration of Board ID in customer design (fast time to market)
3- Avnet support services:
- logistics and key/cert programming services (root cert
provided by customer to keep control of the chain of trust)
- unique data serialized and programmed in each chip
- strong support for all phases of development: sample
evaluation, pre-production test/validation and MP ramp up.
4- REA experience in the Security IC market
48
© 2010 Renesas Electronics America Inc.
All rights reserved.
Questions?
49
© 2010 Renesas Electronics America Inc.
All rights reserved.
Innovation
Server
Extended
boards
Router
PKI Mutual
authentication
50
© 2010 Renesas Electronics America Inc.
All rights reserved.
Thank You!
Please visit both the Renesas and Avnet
booths in the exhibit hall.
51
© 2010 Renesas Electronics America Inc. All rights reserved.
Renesas Electronics America Inc.