Secure Boot from Non-Volatile Memory for Programmable SoC Architectures

“…Another example is the Olympus project [125], [127] whose specifications, source code and hardware are publicly available. We also found several open-hardware approaches documented in the scientific literature [118], [128], [129].…”

“…Therefore, no additional hardware is needed since the FPGA was already used for the processor. Other approaches [111], [129] also use an FPGA but as a security module on its own. In other words, the FPGA is dedicated to security tasks (boot chain verification, recovery, etc.)…”

“…In all cases, one or more pieces of data must be stored in a secure way in order to compare the calculated value to a known good value. The first method consists in calculating the hash of the not yet trusted layer and comparing it with a known good hash [49], [91], [109], [129], [132]. This method is the simplest to implement but requires to store a golden value per layer measured in a read-only memory.…”

“…Assuming that the firmware cannot change the behavior of the hardware security (which should never be the case), attackers necessarily need physical access to achieve their goals. This method is used by all proprietary projects (see proprietary projects in Table 5) and by approaches using an FPGA as a hardware security module [111], [118], [119], [128], [129].…”

Firmware Integrity Protection: A Survey

“…Another example is the Olympus project [125], [127] whose specifications, source code and hardware are publicly available. We also found several open-hardware approaches documented in the scientific literature [118], [128], [129].…”

“…Therefore, no additional hardware is needed since the FPGA was already used for the processor. Other approaches [111], [129] also use an FPGA but as a security module on its own. In other words, the FPGA is dedicated to security tasks (boot chain verification, recovery, etc.)…”

“…In all cases, one or more pieces of data must be stored in a secure way in order to compare the calculated value to a known good value. The first method consists in calculating the hash of the not yet trusted layer and comparing it with a known good hash [49], [91], [109], [129], [132]. This method is the simplest to implement but requires to store a golden value per layer measured in a read-only memory.…”

“…Assuming that the firmware cannot change the behavior of the hardware security (which should never be the case), attackers necessarily need physical access to achieve their goals. This method is used by all proprietary projects (see proprietary projects in Table 5) and by approaches using an FPGA as a hardware security module [111], [118], [119], [128], [129].…”

Firmware Integrity Protection: A Survey