Validating a High-Performance, Programmable Secure Coprocessor

Get BibTex-formatted data

Author

S.W. Smith, R. Perez, S. Weingart, V. Austel

Entry type

techreport

Abstract

This paper details our experiences with successfully validating a trusted device at FIPS 140-1 Level 4 - earning the world\'s first certificate at this highest level. Over the last several years, our group designed and built a physically secure PCI card containing general-purose processor with crypto support. However, for this device to function as a trusted platform for secure coprocessor applications, we needed to establish that assurance through independent validation. We chose FIPS 140-1, since discussions of secure hardware usually cite that standard, and Level 4, since the weaker levels did not provide sufficient assurance for many proposed applications. Successful validation at Level 4 required withstanding a fairly open-ended suite of physical attacks, and preparing formal modeling and verification of the internal software - as well as meeting a number of other sizable chalenges that were not initially apparent. In some sense, our validation effort was an experiement to quantify the design and work effort necassary to achieve the previously unachieved security assurance level. Since our device is a programmable platform, we hope this work substantially lowers the barrier for others to develop, deploy, and validate secure coprocessor applications.

Date

1999 – February – 15

URL

http://www.cs.dartmouth.edu/~sws/pubs/spwa99.pdf

Institution

IBM T.J. Watson Research Center

Key alpha

IBM

Publication Date

2001-01-01

Language

English

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.

@Techreport{ IBM,
	title = "Validating a High-Performance, Programmable Secure Coprocessor",
	author = "S.W. Smith, R. Perez, S. Weingart, V. Austel",
	year = "1999",
	month = "February",
	institution = "IBM T.J. Watson Research Center",
	day = "15",
	abstract = "This paper details our experiences with successfully validating a trusted device at FIPS 140-1 Level 4 - earning the world\'s first certificate at this highest level.  Over the last several years, our group designed and built a physically secure PCI card containing general-purose processor with crypto support.  However, for this device to function as a trusted platform for secure coprocessor applications, we needed to establish that assurance through independent validation.  We chose FIPS 140-1, since discussions of secure hardware usually cite that standard, and Level 4, since the weaker levels did not provide sufficient assurance for many proposed applications.
Successful validation at Level 4 required withstanding a fairly open-ended suite of physical attacks, and preparing formal modeling and verification of the internal software - as well as meeting a number of other sizable chalenges that were not initially apparent.  In some sense, our validation effort was an experiement to quantify the design and work effort necassary to achieve the previously unachieved security assurance level.  Since our device is a programmable platform, we hope this work substantially lowers the barrier for others to develop, deploy, and validate secure coprocessor applications.",
	language = "English",
	url = "http://www.cs.dartmouth.edu/~sws/pubs/spwa99.pdf",
}