SECURELY FIELD CONFIGURABLE DEVICE
1 Assignment
0 Petitions
Accused Products
Abstract
A field configurable device, such as an FPGA, supports secure field configuration without using non-volatile storage for cryptographic keys on the device and without requiring a continuous or ongoing power source to maintain a volatile storage on the device. The approach can be used to secure the configuration data such that it can in general be used on a single or a selected set of devices and/or encryption of the configuration data so that the encrypted configuration data can be exposed without compromising information encoded in the configuration data.
-
Citations
32 Claims
-
1-11. -11. (canceled)
-
12. A method for configuring an electronic device having configurable logic comprising:
-
providing configuration data to the device, the configuration data including first configuration data and encrypted configuration data; configuring at least part of the configurable logic according to the first configuration, including forming a key generator in the configurable logic; generating a volatile key using the key generator configured in configurable logic circuitry in the device, the volatile key dependent on a fabrication variation among devices fabricated according to a same design as the device; decrypting the encrypted configuration data within the device using the generated volatile key; and configuring t least another part of the configurable logic on the device using the decrypted configuration data. - View Dependent Claims (13, 14, 16, 17, 18, 19)
-
-
15. (canceled)
-
20-29. -29. (canceled)
-
30. A method of operating a configurable logic device comprising:
-
loading a configurable logic device with a first module for generating a volatile response that varies among configurable logic devices fabricated according to the same design; using the first module to generate a first volatile response for the device; forming configuration data according to the first volatile response; loading the configuration data into the configurable logic device, including implementing the first module in the configurable logic device; operating the device according to the configuration data including using the first module to generate a second volatile response for the device; determining whether the second volatile response matches the first volatile response; disabling functionality specified by the configuration data if the second volatile response does not match the first volatile response. - View Dependent Claims (31, 32)
-
Specification