Standards in the field of open source hardware: Open tools used for a security chip
Introduction
In a groundbreaking development, the HEP research project has designed and implemented an open, flexible security chip using open source components and tools. Led by the Leibniz-Institut für innovative Mikroelektronik (IHP) and part of the “Trustworthy Electronics” initiative by the German Federal Ministry of Education and Research, the project has succeeded in creating a prototypical security chip within an impressive two-year timeline. This achievement marks a significant milestone in the field of open source hardware and sets important standards for the development and security of security chips.
Background
Security chips play a crucial role in electronic devices, ranging from personal gadgets to automobiles, by performing cryptographic operations and preventing manipulation, malfunctions, and accidents. The challenge lies in ensuring the availability of cost-effective and secure components within complex global value chains. Open source designs that make the source code publicly available for third-party review offer an adaptable and versatile solution. However, establishing the security of these designs using circuit design tools, known as Electronic Design Automation (EDA), is essential.
The HEP Project
The HEP project has made significant strides in addressing the challenges associated with open source hardware design. One of the key achievements is the extension of the SpinalHDL language, an open hardware description language, to enable the semi-automated implementation of security properties. This extension prevents the deletion of crucial security steps during subsequent chip design stages, ensuring the preservation of security measures.
Another noteworthy accomplishment is the formal verification of the VexRiscv processor, a RISC-V design. By employing formal verification methods, the correct functioning of the processor has been mathematically proven to a significant extent. This verification process enhances the security and performance of the processor.
The project has also focused on the development of an open-source crypto accelerator, which further enhances the security and performance of the overall system. In addition, an open masking tool has been developed to counter side-channel attacks that could potentially track cryptographic calculations through factors like power consumption.
The integration of real, Europe-manufacturable process-specific data (PDK) from the IHP into the Openlane toolchain has been another notable achievement. Openlane, composed of open tools like Yosys and Klayout, converts a hardware description into three-dimensional chip designs. The adaptation of Openlane to work with the IHP’s specific processes represents a significant step towards a European PDK tailored for open tools.
Furthermore, the project has successfully integrated the management of a hardware security module into a crypto driver for Autosar (Automotive Open System Architecture), allowing for the incorporation of these developments in various industry domains.
Philosophical Implications
The HEP project, along with similar initiatives like Google’s Open Titan project, represents a shift towards democratizing the design and manufacturing of security chips. The emphasis on open source tools and components in chip design promotes transparency and allows for third-party review, aiding in the identification of vulnerabilities and ensuring the security of these critical components.
By developing open source technologies and verifying their security properties, the project partners are paving the way for a more inclusive and collaborative approach to chip design. Notably, the HEP project’s achievements highlight the power of cooperation between academia, industry partners, and research institutions, all driven by a shared passion for enhancing cybersecurity.
Editorial: The Promise and Challenges of Open Source Hardware
The success of the HEP project demonstrates the immense potential and value of open source hardware in the development of security chips. The accessibility, adaptability, and cost-effectiveness offered by open source designs create new opportunities for students, small and medium-sized enterprises (SMEs), and industry players alike. The ability to develop and manufacture a prototype security chip within a short timeframe showcases the capabilities of open source tools in accelerating innovation and reducing development cycles.
However, challenges remain in ensuring the security of open source hardware. While open source designs allow for transparency and community scrutiny, there is a need to ensure that the circuit design tools (EDA) used in their development are reliable and secure. The HEP project’s focus on extending and verifying existing tools represents a step in the right direction, but ongoing efforts are necessary to build trust in open source hardware across the industry.
Advice
For organizations considering the adoption of open source hardware designs and tools, several factors need to be carefully considered:
1. Security Assurance: It is crucial to thoroughly assess the security of the circuit design tools used in the development process. Independent third-party verification and auditing can provide valuable insights into the robustness of these tools. Collaborative efforts, like those seen in the HEP project, can play a significant role in advancing the state of security.
2. Community Engagement: Actively participating in open source communities and initiatives allows organizations to leverage collective knowledge and expertise. Engaging with experts in the field and contributing to the development of open source designs can lead to improved security and foster innovation.
3. Continuous Evaluation: As the field of open source hardware evolves rapidly, continuous evaluation of tools, designs, and standards is essential. Organizations should stay informed about the latest advancements, vulnerabilities, and best practices to ensure that their open source hardware projects remain secure and up to date.
Conclusion
The HEP project’s achievement in designing an open, flexible security chip using open source tools and components marks a significant milestone in the field of open source hardware. By setting new standards in terms of development times, security assurance, and collaboration, the project partners have demonstrated the potential of open source hardware to disrupt traditional approaches to chip design. However, challenges remain in ensuring the security of open source designs and the reliability of circuit design tools. Organizations must carefully evaluate the security of these tools and actively engage with open source communities to foster collaboration and innovation. With continued dedication and investment, open source hardware has the potential to revolutionize the chip design industry, democratize access to secure components, and strengthen global cybersecurity.
<< photo by Ánh Đặng >>
The image is for illustrative purposes only and does not depict the actual situation.
You might want to read !
- The Implications of Reduced SIM Card Ownership in Burkina Faso
- The Rise of Malvertisers: Exploiting Google Ads to Prey on Users Seeking Popular Software
- Cyber Warfare Escalates: Vietnamese Hackers Unleash DarkGate Malware on U.K., U.S., and India
- The Rise of Yubico: Exploring the Implications of Going Public
- Unveiling the Vulnerabilities: The Growing Threat of Motherboard Mishaps
- The Implication of the Hollywood Writers Strike Resolution on Cybersecurity
- Uncovering the Hidden World: HD Moore’s Discovery Expedition
- WatchGuard’s Latest Acquisition Boosts AI-based Network Detection and Response and Open XDR Capabilities