The RISC-V open-source instruction set architecture (ISA) is gaining popularity in the realm of new processor development. Its maturity allows implementation even in scenarios where security plays a key role. OpenTitan (OT), an open-source silicon Root of Trust (RoT) designed specifically for secure embedded environments is a significant example of this adoption. This study focuses on integrating OT into a System-on-Chip (SoC) exclusively featuring RISC-V architectures. In this configuration, OT serves as a secure co-processor, leveraging its cryptographic accelerators to enhance the performance of cryptographic workloads. A noteworthy aspect of this implementation is the intentional preservation of strong isolation in computation and memory, an essential feature to protect sensitive data, including cryptographic keys and intermediate results of cryptographic tasks. The integration of OT into a complete RISC-V SoC was executed and characterized on an FPGA. The FPGA runs the entire SoC which leverages a specialized communication system between two domains: a Host domain and a Safe domain. The Host domain features a CVA6 processor running Linux, while the Safe domain houses the OT system. During system characterization, the delays introduced by the communication and synchronization system between the Host and Safe domains were measured, along with the performance of cryptographic operations conducted in the Safe domain. Results demonstrate the effectiveness of OT HW/SW integration, compensating for the overhead introduced by the communication and synchronization system between the two domains. This makes the proposed implementation sustainable for various application cases and facilitates its integration into embedded and cyber-physical systems based on secure open-hardware architectures.

End-to-end Integration of OpenTitan Security Features in a Pure RISC-V SoC / Musa, Alberto; Parisi, Emanuele; Barbierato, Luca; Acquaviva, Andrea; Barchi, Francesco.. - ELETTRONICO. - (In corso di stampa), pp. 1-4. (Intervento presentato al convegno 2024 International Conference on Synthesis, Modeling, Analysis and Simulation Methods, and Applications to Circuit Design (SMACD) tenutosi a Volos (GRC) nel 2-5 July 2024).

End-to-end Integration of OpenTitan Security Features in a Pure RISC-V SoC

Barbierato, Luca;
In corso di stampa

Abstract

The RISC-V open-source instruction set architecture (ISA) is gaining popularity in the realm of new processor development. Its maturity allows implementation even in scenarios where security plays a key role. OpenTitan (OT), an open-source silicon Root of Trust (RoT) designed specifically for secure embedded environments is a significant example of this adoption. This study focuses on integrating OT into a System-on-Chip (SoC) exclusively featuring RISC-V architectures. In this configuration, OT serves as a secure co-processor, leveraging its cryptographic accelerators to enhance the performance of cryptographic workloads. A noteworthy aspect of this implementation is the intentional preservation of strong isolation in computation and memory, an essential feature to protect sensitive data, including cryptographic keys and intermediate results of cryptographic tasks. The integration of OT into a complete RISC-V SoC was executed and characterized on an FPGA. The FPGA runs the entire SoC which leverages a specialized communication system between two domains: a Host domain and a Safe domain. The Host domain features a CVA6 processor running Linux, while the Safe domain houses the OT system. During system characterization, the delays introduced by the communication and synchronization system between the Host and Safe domains were measured, along with the performance of cryptographic operations conducted in the Safe domain. Results demonstrate the effectiveness of OT HW/SW integration, compensating for the overhead introduced by the communication and synchronization system between the two domains. This makes the proposed implementation sustainable for various application cases and facilitates its integration into embedded and cyber-physical systems based on secure open-hardware architectures.
In corso di stampa
File in questo prodotto:
File Dimensione Formato  
2024_SMACD___End_to_end_Integration_of_OpenTitan_Security_Features_in_a_Pure_RISC_V_SoC.pdf

accesso aperto

Tipologia: 2. Post-print / Author's Accepted Manuscript
Licenza: PUBBLICO - Tutti i diritti riservati
Dimensione 175.87 kB
Formato Adobe PDF
175.87 kB Adobe PDF Visualizza/Apri
Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11583/2992727