DL manuals
Xilinx
Processor
Zynq-7000
Application Note

Xilinx Zynq-7000 Application Note - Hardware Root of Trust

Other manuals for Zynq-7000: User Manual

Manual is about: Memory Interface Solutions

Page of 14

Download

Print this page

Bookmark us

Hardware Root of Trust

XAPP1309 (v1.0) March 7, 2017

www.xilinx.com

Figure 5

shows three possible system setups. The strongSwan software running on an Ubuntu

server does both the remote attestation and the network security. The Ethernet connection can

be either direct from the PC to the Avnet board or dynamic host configuration protocol (DHCP)

using Ethernet wall sockets. In (a), the server is run on an Ubuntu installation on either

VirtualBox or VMware on the PC. In (b), an Ubuntu-based PC runs the strongSwan server. In (c),

the server runs on an Amazon web server (AWS). Xilinx does not provide the AWS account.

The reference system provides methods for a measured boot of a single client, providing

remote attestation of early load software (BootROM, FSBL) which is new functionality for

embedded systems. An actual connected system has multiple embedded devices, and the

strongSwan server measures all Linux partitions loaded, not just the early load software.

Hardware Root of Trust

In Zynq-7000 AP SoCs, the HROT is based on the first code executed by the ARM® CPU0 at

power-on. The code is stored in on-chip, metal-masked ROM, and is referred to as BootROM

code. BootROM code is immutable, and its principle function is to perform device initialization

and load the FSBL into read/writable on-chip memory (OCM). Neither the BootROM nor the

OCM are accessible at device pins. The BootROM Configuration Flowchart figure in

Zynq-7000

All Programmable SoC Technical Reference Manual

(UG585)

[Ref 1]

provides the flow of the

BootROM code functionality. If secure boot is specified, the BootROM authenticates the FSBL

using the RSA-2048 standard prior to execution of the FSBL. The Zynq-7000 AP SoC HROT is

enhanced by adding a TPM to the embedded platform. The TPM provides partition

measurements, cryptographic functions, and secure key storage for keys used by the Zynq-7000

AP SoC.

X-Ref Target - Figure 5

Figure 5:

Reference System Hardware Setup Options

Laptop

Virtual Box

Ubuntu

strongSwan

IIoT

Starter Kit

Laptop

Ubuntu

strongSwan

IIoT Starter Kit

Laptop

AWS

strongSwan

IIoT

Starter Kit

(a)

(b)

(c)

MicroZed

730

Server

Client

X18732-030617

« ‹ Prev 4 5 6 7 8 9 10 Next › »

Summary of Zynq-7000

Page 1
Xapp1309 (v1.0) march 7, 2017 1 www.Xilinx.Com summary the secure boot functionality for the zynq®-7000 all programmable (ap) soc provides the capability to authenticate all partitions loaded at boot using rsa-2048 authentication. It also supports advanced encryption standard (aes) encryption of par...
Page 2
Introduction xapp1309 (v1.0) march 7, 2017 2 www.Xilinx.Com remote attestation capability has been in linux starting with 2.6.3, and is generally known as integrity measurement architecture (ima). The linux extended verification module (evm) is used in conjunction with ima. The term measured boot is...
Page 3
Introduction xapp1309 (v1.0) march 7, 2017 3 www.Xilinx.Com figure 2 shows functional components of the zynq-7000 ap soc and the infineon optiga slb 9670 tpm on the client platform. At power-up, the zynq-7000 ap soc on-chip bootrom code loads the first stage boot loader (fsbl). The fsbl loads u-boot...
Page 4
Hardware and software requirements xapp1309 (v1.0) march 7, 2017 4 www.Xilinx.Com hardware and software requirements the hardware and software requirements for the reference system include the following: • avnet industrial internet of things (iiot) starter kit with microzed board • infineon optiga t...
Page 5: Reference System Description
Reference system description xapp1309 (v1.0) march 7, 2017 5 www.Xilinx.Com reference system description figure 3 shows a desktop setup for the single client system used in the reference design.The client in the avnet iiot drives a communication terminal. The strongswan attestation server runs from ...
Page 6
Reference system description xapp1309 (v1.0) march 7, 2017 6 www.Xilinx.Com figure 4 shows the avnet iiot starter kit with the microzed board mounted on the avnet arduino carrier card. It also shows the infineon optiga tpm 1.2 slb 9670 pmod plugged into the j2 ps pmod connector. The infineon optiga ...
Page 7: Hardware Root of Trust
Hardware root of trust xapp1309 (v1.0) march 7, 2017 7 www.Xilinx.Com figure 5 shows three possible system setups. The strongswan software running on an ubuntu server does both the remote attestation and the network security. The ethernet connection can be either direct from the pc to the avnet boar...
Page 8: Measured Boot
Measured boot xapp1309 (v1.0) march 7, 2017 8 www.Xilinx.Com in zynq-7000 ap socs, the term secure boot is used to define the secure loading of the bitstream and software at power-on. The bitstream is loaded into on-chip configuration memory. Software partitions encrypted in non-volatile memory (nvm...
Page 9
Integrity measurement architecture xapp1309 (v1.0) march 7, 2017 9 www.Xilinx.Com integrity measurement architecture ima provides the basis for measured boot. An overview of ima is provided in strongswan documentation [ref 3] . In remote attestation with ima, the server compares measurements receive...
Page 10: Trusted Platform Module
Trusted platform module xapp1309 (v1.0) march 7, 2017 10 www.Xilinx.Com trusted platform module documentation on tpm functionality is provided by the trusted computing group (tcg), beginning with the tpm main specification [ref 4] . Tpm 1.2 was the most commonly used tpm in 2016. The infineon optiga...
Page 11: Zynq 7000 Soc-Tpm Interface
Zynq 7000 soc-tpm interface xapp1309 (v1.0) march 7, 2017 11 www.Xilinx.Com zynq 7000 soc-tpm interface the zynq-7000 soc-tpm interface provides the communication between the zynq-7000 device and the infineon optiga slb9670 tpm. The interface uses commands from a tpm_toolbox. The tpm_toolbox support...
Page 12
Network security in measured boot xapp1309 (v1.0) march 7, 2017 12 www.Xilinx.Com network security in measured boot software updates and remote attestation require a secure connection between a server and the embedded system clients. The network has a large attack surface because it can be attacked ...
Page 13: Conclusion
Reference design functional overview xapp1309 (v1.0) march 7, 2017 13 www.Xilinx.Com reference design functional overview the following steps are done in the reference design to set up ima, tpm, and network security. • activate ima in the linux kernel • configure the ima policy • activate the tpm • ...
Page 14: Revision History
Revision history xapp1309 (v1.0) march 7, 2017 14 www.Xilinx.Com 5. Secure boot of the zynq-7000 all programmable soc ( xapp1175 ) revision history the following table shows the revision history for this document. Please read: important legal notices the information disclosed to you hereunder (the “...