Research Consortium sets Standards in the Field of Open Source Hardware: Open Tools used for a Security Chip
With the tools and designs used, the research consortium was able to define, design and manufacture a prototypical security chip within two years. The hardware security module (HSM) produced in this way provides, among other things, a crypto accelerator and tamper-resistent security functions. The development tools used in the process were integrated into a common development environment and expanded to include missing functionality. The Google-driven Open Titan project is similar, but HEP is the first European project. HEP is particularly characterised by a very short development cycle.
Security chips are essential for many suppliers of electronic devices, from the smallest personal devices to automobiles. They perform cryptographic operations and are intended to prevent manipulation, malfunctions and accidents. These chips should be open, flexibly adaptable and as mathematically proven secure as possible. Given global value chains with numerous players, the supply of such cost-efficient components is a major challenge. Open source designs, where the so-called source code is made public for third-party review, offer a versatile alternative here, as long as their security can be ensured with the circuit design tools (EDA). The research consortium is working on this in the HEP project, which is funded by the BMBF as part of its “Trustworthy Electronics” initiative (Vertrauenswürdige Elektronik).
In detail, the following results have been developed and implemented within the HEP project:
- Extension of the SpinalHDL language: The research consortium has extended the open hardware description language SpinalHDL to enable the semi-automated implementation of security properties. This prevents security-relevant steps from being deleted as superfluous during the subsequent chip design steps.
- Formal verification of the VexRiscv processor: The correct functioning of the VexRiscv processor, a RISC-V design, has been largely proven mathematically by using formal verification methods.
- Development of an open source crypto accelerator: The security and performance of the processor have been enhanced with the development of an open-source crypto accelerator.
- Development of open masking: Cryptographic calculations could possibly be tracked through side channels, such as power consumption, and keys could be calculated from this. This is countered with a newly developed, semi-automated, open masking tool.
- Integration of real, in Europe manufacturable, process specific data (PDK) of the IHP into Openlane: Openlane is an open tool chain promoted by independent developers, Google, efabless and initially also by DARPA to convert a hardware description into three-dimensional chip designs. Openlane, for its part, is partly made up of open, European tools, such as Yosys and Klayout. However, the results of Openlane must be adapted to the factory-specific processes in order for the chip to function properly. These specifications are described in the so-called PDK (Process Design Kit). For the first time, HEP used a European PDK with the open Openlane, the latter improved for this purpose.
- The work in the HEP project has laid the foundation for the first European PDK specifically designed for open tools.
- Integration of the management of a hardware security module into a crypto driver for Autosar (AUTomotive Open System ARchitecture).
By implementing these achievements for a security chip, the researchers have set new standards for the security and development cycles of open hardware.
Detlef Boeck from project partner Elektrobit: “As an industry partner, it was important for us to integrate the components developed in the HEP project into the Autosar environment of EB tresos.”
René Rathfelder from project partner IAV: „The risks and threats posed by the increasing complexity of systems are becoming more sophisticated. We want to take advantage of the opportunity to work on open cybersecurity developments at an early stage in order to be able to incorporate these into all our areas of activity in the future.“
Dr.-Ing. Norbert Herfurth from IHP: „As project coordinator, I am very grateful for our highly motivated and capable consortium. It is impressive what can be achieved in such a short period of time when everyone is passionate about what they do.“
The manufactured security chip works, but for design-open security products, an open, non-volatile memory and an open, physical random number generator are currently still missing – the project partners are working on solutions for both. The code for installation on an FPGA has been made publicly available. The demonstrated flow shows that the design of microchips with open tools is accessible, comes at low costs and is quickly usable for everybody – students, SMEs, as well as industry.
About the project:
The HEP project is led by IHP – Innovations for High Performance Microelectronics.
Other partners include:
- IAV GmbH Ingenieursgesellschaft Auto und Verkehr
- Elektrobit Automotive GmbH
- Deutsches Forschungszentrum für Künstliche Intelligenz GmbH
- Fraunhofer-Institut für Sichere Informationstechnologie SIT
- Hochschule RheinMain
- Ruhr-Universität Bochum, Lehrstuhl für Security Engineering
- Technische Universität Berlin, Department Security in Telecommunications
Associated partners are:
- CARIAD SE (A Volkswagen Group Company)
- HENSOLDT Cyber GmbH
- Hyperstone GmbH
- Robert Bosch GmbH
- Swissbit Germany AG
Funding reference number: ME1ZEUS012.
Further information:
http://hep-alliance.org/Project/
https://github.com/VE-HEP/VE-HEP-HW-SW
https://github.com/IHP-GmbH/IHP-Open-PDK