ICs & Semiconductors

Mach-NX FPGA is designed for cyber-resilient systems

Wed, Dec 09, 2020

Lattice Semiconductor has added support for ECC 384 and SPDM protocols in its second generation of secure control FPGAs. Following on from the secure control of the Lattice MachXO3D FPGAs, released last year, the FPGAs are the third family in 12 months that have been developed on the Lattice Nexus FPGA platform. The company says the Mach-NX FPGAs deliver heightened security features and the fast, power-efficient processing needed to implement a real time hardware root of trust (HRoT) on future server platforms, computing, communications, industrial and automotive systems.

According to the company, the Mach FPGA families can simplify and accelerate implementation of technologies, such as ECC 384 and data security protocols like SPDM, to secure platforms against cyber attack and IP theft.

Esam Elashmawi, chief strategy and marketing officer at Lattice, commented: “Securing systems against unauthorised firmware access goes beyond establishing a HRoT at boot. It also requires that components used to build the system are not compromised as they move through the global supply chain. When combined with the additional protection afforded by our SupplyGuard security service, Lattice Mach-NX FPGAs can protect a system throughout its entire lifecycle: beginning at the time components start moving through the supply chain, through initial product assembly, end-product shipping, integration, and throughout the product’s operational lifetime.”

The Mach-NX FPGAs combine a secure enclave (a 384-bit hardware-based crypto engine supporting reprogrammable bitstream protection) with a logic cell and I/O block. The enclave helps secure firmware, and the logic cell and I/O block enable system control functions such as power management and fan control. The FPGAs can verify and install the over-the-air firmware updates to keep systems compliant as security guidelines evolve and protocols are introduced.

The parallel processing architecture and dual-boot flash memory configuration provide the near instantaneous response times needed to detect and recover from attacks (a level of performance beyond the capabilities of other HRoT platforms like MCUs), reports Lattice.

The FPGAs will support Lattice Sentry, a software stack of customisable embedded software, reference designs, IP and development tools. This accelerates the implementation of secure systems to comply with NIST SP-800-193, Platform Firmware Resiliency (PFR) guidelines and MCTP-SPDM.

The Lattice SupplyGuard supply chain security subscription service tracks locked Lattice FPGAs through their entire lifecycle, from the point of manufacture, through transport via the global supply chain, system integration and assembly, initial configuration, and deployment.

The Lattice Propel design environment accelerates design of a customised, PFR-compliant HRoT solution. It uses a GUI-based development environment that allows developers to create PFR solutions while minimising the need to write RTL code, explains Lattice.

http://www.latticesemi.com

> Read More

MCUs are validated for security, says NXP

Tue, Nov 24, 2020

Microcontrollers (MCUs) from NXP Semiconductors have received Level 2 certifications by both the PSA Certified scheme co-developed by Arm and the GlobalPlatform Security Evaluation Standard for IoT Platforms (SESIP) using the secure protection profile for embedded processors. The LPC55S16 MCU is intended for IoT and Industrial edge applications, device security and data protection.

The LPC55S16 MCU is part of the NXP EdgeVerse computing and security portfolio and a member of the general purpose LPC5500 MCU series based on the Arm Cortex-M33 core. The MCU series is based on 40nm NVM process technology, and offers advanced security and mixed-signal capabilities.

The LPC55S16 MCU achieved PSA Certified Level 2, based on an assurance framework to showcase robustness of the security. The certification enables device manufacturers to reduce additional security testing and improve time to market. The laboratory evaluation against the PSA Root of Trust (PSA-RoT) security claims to demonstrate that the device can protect against scalable software attacks.

To achieve GlobalPlatform SESIP 2, the LPC55S16 MCU underwent source code analysis and penetration testing and was validated by an independent certification body. SESIP certification helps assure product security claims are tested and verified, and provides evidence of the LPC55S16 MCU’s resistance to basic attack potential. SESIP allows for customers to re-use the LPC55S16 MCU validation results in the certification process for their end applications.

The LPC55S16 MCU integrated security features include Arm TrustZone technology, which enables system-wide software protection with the ability to securely isolate peripherals to reduce the risk of attack on critical components. There is also an AES-256 accelerator which provides confidentiality and a secure hash algorithm (SHA2) accelerator provides integrity of secure communications and secure boot. A Prince module offers real-time encryption and decryption of the on-chip flash to provide both secure storage of data and asset protection of software IP.

The Casper Crypto co-processor enables hardware acceleration of various asymmetric cryptographic algorithms to establish secure connections, while a physical unclonable function (PUF) uses dedicated on-chip SRAM to construct unique device root keys (64 to 4096 bits) for secure storage. Other protection features are a 128-bit unique device serial number for identification (UUID) and a true random number generator (TRNG). A code watchdog enables integrity checking of execution flow of the firmware and a debug authentication protocol is provided for secure debugging.

The LPC55S16 MCU is part of the Certified EdgeLock Assurance program. Both the SESIP and PSA Certified testing and certifications were conducted by the independent security evaluation laboratory, Brightsight.

The i.MX LPC55S16 MCU family is available now.

http://www.nxp.com

> Read More

PIC18 Q84 family transmits-receives data through CAN FD

Thu, Nov 19, 2020

Microchip believes the PIC18 Q84 family is the first PIC18 microcontroller that can transmit and receive data through a controller area network flexible data rate (CAN FD) bus.

It meets the demand for increased bandwidth and flexible data rates in evolving automotive applications like safety and communication. It also supports the development of advanced driver assistance systems (ADAS), adds Microchip Technology.

Used with an array of core independent peripherals (CIPs) that handle a variety of tasks without requiring CPU intervention, the PIC18 Q84 family reduces time and cost when connecting systems to a CAN FD network.

The microcontrollers transport sensor data to a CAN FD bus without the need for gateways or sophisticated network switching techniques. Its configurable CIPs allow users to create custom hardware-based functions for automotive and industrial designs with near-zero latency, without requiring additional code. Peripherals include a 32-bit cyclic redundancy check with scan (CRC/Scan), a windowed watchdog timer (WWDT) for functional safety capabilities, and a Joint Test Action Group (JTAG) interface to implement industry standard testing and debugging.

“CAN FD will continue to play a critical role in delivering faster data transfer rates for applications, ranging from the connected car to industrial automation and smart homes,” said Greg Robinson, associate vice president of marketing for Microchip’s 8-bit microcontroller business unit. The additon of the 8-bit PIC microcontroller family is expected to advance the adoption of the CAN FD protocol, helping designers create cost-effective network nodes at scale, he added.

The PIC18 Q84 family offers both hardware and software support. Hardware includes a Curiosity nano development board and a Curiosity high pin count (HPC) development board. A plug-in module (PIM) is also available for the automotive networking development board and for use with Microchip development boards. Software includes Microchip’s MPLAB Code Configurator (MCC).

Microchip also provides a broad family of CAN FD transceivers and CAN FD controllers.

The PIC18 Q84 family is available in volume production now.

http://www.microchip.com

> Read More

PHY is integrated for fibre optic automotive networking

Thu, Nov 19, 2020

Believed to be the first device for optical in-vehicle connectivity incorporating a transceiver IC, optoelectronics and optics, the KD7051 is an integrated fibre optic transceiver (FOT) from KDPOF.

The integrated FOT is a 100Mbit per second optical port in one single component. “By constructing the ASIC IC, photodiode and LED as one single device, we significantly reduce cost and footprint for automotive Ethernet connectivity at 100 Mbits per second,” said Carlos Pardo, CEO and co-founder of KDPOF. “The decreased number of parts also reduces the effort in testing and qualification,” he added.

The KD7051 reduces cost, compared to shielded twisted pair (STP) of copper wires, said KDPOF. There are no margin stacking between links in the supply chain and supply chain simplification, which offers competitive pricing for EMC critical or galvanic isolated critical links, says KDPOF. Applications include battery management systems, camera and sensor links, fast Ethernet links and smart antenna links.

KDPOF’s KD7051 transceiver IC offers a complete FOT design, which reuses low cost MEMs encapsulation and allows SMD reflow assembly with 8.0 by 7.0mm LGA components. The FOT is shielded against electromagnetic radiation. Fibre connection is via a simple plastic connector placed on top. The temperature range, from -40 to +105 degrees C, conforms with harsh automotive environmental requirements. It has a vibration class of V2 and withstands motor conditions. According to KDPOF, the device endures water without sealing. Shielding is integrated into the PCB component to strengthen EMC performance even with the ECU shield case removed. The first prototypes are available now.

The plastic optical fibre has a large diameter, making it more cost-effective to manufacture and install. During car assembly, the optical harness can be installed in the same process as the copper harness to ease installation.

Fabless semiconductor supplier KDPOF provides innovative high speed optical networking for harsh environments. It makes Gbit communications over fibre optics a reality, and supplies 1Gbit per second POF links for automotive, industrial, and home networks.

The company was founded in 2010 in Madrid, Spain, and offers a cost-effective technology as either ASSP or IP to be integrated in SoCs. The adaptive system works with a range of optoelectronics and low cost large core optical fibres, for a low risk, low cost, reduced time to market for vehicle manufacturers.

http://www.kdpof.com

> Read More

About Smart Cities

This news story is brought to you by smartcitieselectronics.com, the specialist site dedicated to delivering information about what’s new in the Smart City Electronics industry, with daily news updates, new products and industry news. To stay up-to-date, register to receive our weekly newsletters and keep yourself informed on the latest technology news and new products from around the globe. Simply click this link to register here: Smart Cities Registration