The RISC-V open-source instruction set architecture (ISA) is gaining popularity in the realm of new processor development. Its maturity allows implementation even in scenarios where security plays a key role. OpenTitan (OT), an open-source silicon Root of Trust (RoT) designed specifically for secure embedded environments is a significant example of this adoption. This study focuses on integrating OT into a System-on-Chip (SoC) exclusively featuring RISC-V architectures. In this configuration, OT serves as a secure co-processor, leveraging its cryptographic accelerators to enhance the performance of cryptographic workloads. A noteworthy aspect of this implementation is the intentional preservation of strong isolation in computation and memory, an essential feature to protect sensitive data, including cryptographic keys and intermediate results of cryptographic tasks. The integration of OT into a complete RISC-V SoC was executed and characterized on an FPGA. The FPGA runs the entire SoC which leverages a specialized communication system between two domains: a Host domain and a Safe domain. The Host domain features a CVA6 processor running Linux, while the Safe domain houses the OT system. During system characterization, the delays introduced by the communication and synchronization system between the Host and Safe domains were measured, along with the performance of cryptographic operations conducted in the Safe domain. Results demonstrate the effectiveness of OT HW/SW integration, compensating for the overhead introduced by the communication and synchronization system between the two domains. This makes the proposed implementation sustainable for various application cases and facilitates its integration into embedded and cyber-physical systems based on secure open-hardware architectures.
End-to-end Integration of OpenTitan Security Features in a Pure RISC-V SoC / Musa, Alberto; Parisi, Emanuele; Barbierato, Luca; Acquaviva, Andrea; Barchi, Francesco.. - ELETTRONICO. - (2024), pp. 1-4. (Intervento presentato al convegno 2024 International Conference on Synthesis, Modeling, Analysis and Simulation Methods, and Applications to Circuit Design (SMACD) tenutosi a Volos (GRC) nel 2-5 July 2024) [10.1109/SMACD61181.2024.10745397].
End-to-end Integration of OpenTitan Security Features in a Pure RISC-V SoC
Barbierato, Luca;
2024
Abstract
The RISC-V open-source instruction set architecture (ISA) is gaining popularity in the realm of new processor development. Its maturity allows implementation even in scenarios where security plays a key role. OpenTitan (OT), an open-source silicon Root of Trust (RoT) designed specifically for secure embedded environments is a significant example of this adoption. This study focuses on integrating OT into a System-on-Chip (SoC) exclusively featuring RISC-V architectures. In this configuration, OT serves as a secure co-processor, leveraging its cryptographic accelerators to enhance the performance of cryptographic workloads. A noteworthy aspect of this implementation is the intentional preservation of strong isolation in computation and memory, an essential feature to protect sensitive data, including cryptographic keys and intermediate results of cryptographic tasks. The integration of OT into a complete RISC-V SoC was executed and characterized on an FPGA. The FPGA runs the entire SoC which leverages a specialized communication system between two domains: a Host domain and a Safe domain. The Host domain features a CVA6 processor running Linux, while the Safe domain houses the OT system. During system characterization, the delays introduced by the communication and synchronization system between the Host and Safe domains were measured, along with the performance of cryptographic operations conducted in the Safe domain. Results demonstrate the effectiveness of OT HW/SW integration, compensating for the overhead introduced by the communication and synchronization system between the two domains. This makes the proposed implementation sustainable for various application cases and facilitates its integration into embedded and cyber-physical systems based on secure open-hardware architectures.File | Dimensione | Formato | |
---|---|---|---|
2024_SMACD___End_to_end_Integration_of_OpenTitan_Security_Features_in_a_Pure_RISC_V_SoC.pdf
accesso aperto
Tipologia:
2. Post-print / Author's Accepted Manuscript
Licenza:
Pubblico - Tutti i diritti riservati
Dimensione
175.87 kB
Formato
Adobe PDF
|
175.87 kB | Adobe PDF | Visualizza/Apri |
End-to-end_Integration_of_OpenTitan_Security_Features_in_a_Pure_RISC-V_SoC.pdf
accesso riservato
Tipologia:
2a Post-print versione editoriale / Version of Record
Licenza:
Non Pubblico - Accesso privato/ristretto
Dimensione
229.23 kB
Formato
Adobe PDF
|
229.23 kB | Adobe PDF | Visualizza/Apri Richiedi una copia |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
https://hdl.handle.net/11583/2992727