microcontroller based iotdevices - intrinsic id
TRANSCRIPT
AuthenticateEverything May25,2017 1May25,2017
ProvisioningsecureIdentityforMicrocontrollerbasedIoT DevicesMarkSchaeffer,Sr.ProductMarketingManager,SecuritySolutionsSynergyIoT PlatformBusinessDivision,RenesasElectronics,Inc.
AuthenticateEverything May25,2017 2
StateoftheIoT – Internetof“Insecure”Things
October2016’smassiveDDOSattack
Industrial&MedicalSabotage
Privacy
HackedJeep
AuthenticateEverything May25,2017 3
Elementsofasecureembeddedplatform
EmbeddedOSEmbeddedMCU
SimplesecurityAPIs fornon-cryptographers
SecureMemory
SecurityServicesformanagingidentity,keys,firmwareCommunicationsprotocols
integratedwithsecurity
SecureEmbeddedPlatform
AuthenticateEverything May25,2017 4
Securitytechnologybusinessobjectives
AuthenticateEverything May25,2017 5
Iot chain-of-trustforsolutions
MCU- Readprotection- WriteProtection/OTP- HWCryptoacceleration- SecureCodeisolation
CloudServices- Application- LifecycleMgmt- SecurityPolicy- IDS/IPS- SIEM- EdgeComputing
SecureConnectivity- TLS/SSL- MQTT- BTLE- WiFi- NFC.
Root-of-Trust- Secure Boot- SecureFirmwareFlash(manufacturing/Updates)- UniqueIdentity
DeliveringaTrustedDeviceToCustomer
CertificateServices- SiliconvendorCert- OEMCert- App/customer/TLS Cert
Application- SecurityAPIs- Key/certificate
management- Protocolsupport
SecureEnrollmentandOperations
AuthenticateEverything May25,2017 6
AttackscopeformostembeddedIoT applications
SpectrumofsecurityfeaturesinICs
TotalSolutionCost
Securitylevel(resistancetoscopeofattacks)
Remote/LogicalattacksLimited
GeneralpurposeMCU
Physicalattacks
SecureElement,SmartCardChip,TPM
VPN,CreditCards,HighendIndustrial
IoT,Hostanti-counterfeiting
Disposable/PeripheralAnti-counterfeiting
GeneralpurposeMCU
w/HWmemoryprotection
GeneralpurposeMCUw/HW
memoryprotection&tamperresistance
SpecialSecurityICs PUF
AuthenticateEverything May25,2017 7
AdvantageofsecurityinthegeneralpurposeMCU
SystemBoard
MCU
SecureMCU
BootfirmwareinROM
MCUwithoutsecurity MCUwithsecurity
SystemBoard
..andthusrobustsecurityisoftennotimplementedduetocostandcomplexity
Requiresasetofspecializedhardware
BootfirmwareinROM
MCU
Secfeatures
SecurityisintegratedintoMCU
AuthenticateEverything May25,2017 8
Arephysicalattacksonkeysinscope?
DataCenter/Server
FieldEmbedded/IoTDevices
SecureLocation
Inmodernsystems1,highlysensitivemasterkeysaretypicallyonlyinasecurelocation
Andarealsoprotectedagainstphysicalattacksbyspecializedhardware
Anykeysinfielddevicesaretypicallyuniqueperdeviceortemporary
Physicalattacksonasinglepointoffailure(DataCenter)areINSCOPE
1Theuseofmodernasymmetric/publickeyalgorithmshasreducedtheuseofsecretmasterkeysdistributedintothefield
Physicalattacksonindividualdevices,mightormightnotscaleRemotesoftware
attacksscale
AuthenticateEverything May25,2017 9
Memorysegmentsinasingleprocessor
UserFlash1
• UpdatableAppfirmwareNOTIPProtected• Non-secureData• EncryptedData
(KeysstoredinSecurityMPU)
CanWrite
FlashAccessWindow
(Writeable)
CanRead
SecurityMPU
(Readprotected)
ReadorWrite(Unsecured)
WriteOnly
WriteOnce(RootofTrust)
UnsecureCodeAccess
1ThesameschemeappliestoSRAM,butgenerallycontainanycodeorkeys.SecureSRAMisavailabletosecureflashandvice-versa.
• Securecode• Updatablekeys SecureDatais
onlyaccessiblebySecureCode
UnsecureDataisaccessiblebyanycode
Bootloader Kernel
AuthenticateEverything May25,2017 10
Developyourprovisionschemeearlyon…
ProgrammingCenterFactory Distributor
SiliconIdentity
OEMUniqueIdentity
OEMFirmwareMasteringCert
Inventory
Silicon
OEMIdentity
Silicon
ApplicationFirmware
OEMDevID OEMFWMast.
Firmware(Encrypted,signed,
controlled)
Enrollment/Operations
AppID
TLS
Silicon
User/AppIDentity
OEMDevID OEMFWMast.
CM/OEM
AuthenticateEverything May25,2017 11
AdvancedSecurityfeatures&servicesProvidingachain-of-trustforsolutions
BareMCU- MPU1 (Readprotection)- FAW2 (Writeprotection)- HWCryptoacceleration
CloudServices- App- LifeCycleMgmt- SecurityPolicy- IDS/IPS- SIEM- EdgeComputing
SecureConnectivity- TLS/SSL- MQTT- BTLE,etc.
SecureFirmwareFlashingPartners- SecureManufacturing- SecureUpdates
SecureFlashProgrammingSolution
SecuritySoftware Modules- Secure Boot- SecureFirmwareFlash- UniqueIdentity
Security RefSoln
CertificateServices- RenesasCert- OEMCert- App/customer/TLS Cert
End-to-EndIoT solutionswithEcology Partners
SSPAPI’s,ToolboxRefDesign- SecurityAPI’s- Workingapplicationexamples
withsimulatedcloudserverandCertificateAuthoritySecurityToolbox
1HardwareMemoryProtectionUnit2HardwareFlashAccessWindow/One-time-programmableFeatures
AuthenticateEverything May25,2017 12
RENESASSynergy’sSecurityReferenceSolution:AFirmwareFlashProgrammingSolutionOverview
Applicationsoftware/firmware
OEM/Contract Manufacturer Channel/EndUserSynergyPlatform
BareMCU
SecuritySoftware Modules
Synergy’sSecurityReferenceSolution
SentriX™ Security Programming Platform
Secure Deploy™
Partners/ProvisioningTools
EndProducts
TheSynergyMCUprovideshardware-protectedmemorysegmentsintegratedwithanasymmetriccryptographicenginetovalidateanddecryptthefirmware.
FirmwareUpdates
AuthenticateEverything May25,2017 13
Securitytoolbox
• Referenceexamplesandsampleprotocols(MedicalDevice,IndustrialController)• CryptoAPI• Keyexchange• Salt/Anti-replay• Identitywithcertificates• Integrity/Signature
• Certificatecreation&usage• Keygeneration• SimplesampleCertificateAuthority• ValidatingChain-of-trust• Publickeyvalidationandusage
AuthenticateEverything May25,2017 14
©
ThankYou!