Problem: Lack of Robust Hardware Keys to Anchor Trust

IoT platforms from cloud service providers (CSPs) such as Amazon AWS, Microsoft Azure, and Google Cloud, offer services to onboard new edge IoT devices to their cloud. But strong device-unique keys, forming a robust root of trust, are not part of the service.

And adding an external security chip, such as a secure element, for this purpose is an expensive solution.

Solution: SRAM PUF-based Unclonable Identity

Keys from the Inside

  • SCRAM PUF technology uses the uniqueness that’s inherent to every chip to create device-unique keys from the inside
  • Device unique keys are never stored on device to increase security strength
  • This “Silicon Fingerprint” forms the basis for a strong hardware root-of-trust

SRAM PUF Technology combined with Public Key Cryptography for the IoT

  • Synopsys PUF – Software combines SRAM PUF technology with lightweight elliptic curve cryptography to create device-unique private-public key pairs
  • These key pairs form the basis of device-unique unclonable identities (= key pair + device certificate), which are necessary to authenticate devices to the cloud and secure their communications
  • The technology has been optimized to run on resource-constrained IoT devices

Resources