Method and apparatus for secure configuration of a field programmable gate array
First Claim
1. A method of operating an integrated circuit with on-chip volatile program memory comprising:
- inputting a stream of data comprising unencrypted configuration data to the integrated circuit;
encrypting the unencrypted configuration data using a security circuit of the integrated circuit and a security key stored in the integrated circuit; and
outputting a stream of encrypted configuration data from the integrated circuit.
1 Assignment
0 Petitions
Accused Products
Abstract
A field programmable gate array (70) has security configuration features to prevent monitoring of the configuration data for the field programmable gate array. The configuration data is encrypted by a security circuit (64) of the field programmable gate array using a security key (62). This encrypted configuration data is stored in an external nonvolatile memory (32). To configure the field programmable gate array, the encrypted configuration data is decrypted by the security circuit (64) of the field programmable gate array using the security key stored in the field programmable gate array.
-
Citations
55 Claims
-
1. A method of operating an integrated circuit with on-chip volatile program memory comprising:
-
inputting a stream of data comprising unencrypted configuration data to the integrated circuit;
encrypting the unencrypted configuration data using a security circuit of the integrated circuit and a security key stored in the integrated circuit; and
outputting a stream of encrypted configuration data from the integrated circuit. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36)
-
-
37. A method of operating a integrated circuit comprising:
-
receiving first encrypted configuration data and a first security key from a network;
decrypting the first encrypted configuration data to obtain unencrypted configuration data using a first security key using user programmed circuitry of the integrated circuit; and
encrypting the unencrypted configuration data using a second security key and a fixed security circuit of the integrated circuit to obtain second encrypted configuration data. - View Dependent Claims (38, 39, 40, 41, 42, 43, 44, 45)
-
-
46. A field programmable gate array comprising:
-
a serial interface for loading initial configuration and key information;
a battery-backed on-chip memory for storing the cryptographic key;
a triple-DES encryption circuit; and
an interface to an external nonvolatile memory for storing encrypted configuration data.
-
-
47. A method for securely configuring an FPGA comprising:
-
loading key information into an on-chip battery-backed register;
loading an initial configuration through a JTAG interface; and
storing an encrypted version of the configuration in an external nonvolatile memory.
-
-
48. A field programmable gate array comprising:
-
a plurality of static random access memory cells to store a configuration of user-configurable logic of the field programmable gate array;
an ID register to store a security key; and
a decryption circuit to receive and decrypt a stream of encrypted configuration data using the security key, and generate decrypted configuration data for configuring the static random access memory cells. - View Dependent Claims (49, 50, 51, 52, 53, 54, 55)
-
Specification