• Resources
  • Directory
  • Webinars
  • CAD Models
  • Video
  • Blogs
  • EDGE Awards
  • Advertise
    1. Technologies
    2. Embedded
    3. Digital ICs
    4. Processors
    5. Microcontrollers

    Secure Micro Protects Network Host

    June 17, 2011
    The SLIMpro Trusted Management Module isolates the PowerPC core in AppliedMicro's APM86791 PacketPro microcontroller to provide a secure network computing environment.

    1 of Enlarge image

    APM86791 PacketPro

    AppliedMicro's single-core Mamba APM86190 and dual core APM86290 (see Multicore Server Processor Slims Down Secure Networking) introduced the Scalable Lightweight Intelligent Management Processor (SLIMpro) Trusted Management Module (TMM). SLIMpro is at the heart of the new APM86791 PacketPro processor (Fig. 1) that is designed to deliver the highest level of security for network applications.

    AppliedMicro's approach is key to providing secured devices as well as running secure applications because it all starts at boot time. Still, many chips provide secure boot and assume that software will prevent attacks. The TMM is designed to isolate much of that support from the host processor allowing designers to better control overall system security. TMM could prevent a compromised host application from changing the boot code.

    The TMM support provides a secure on-chip cryptographic boundary region by hiding keys, passwords and digital certificates. It enables:

    • Secure Boot for the itself and the main processor
    • Secure communication managed at the hardware level
    • Secure software updates so all update images are decrypted and authenticated
    • Secure software checks to detect violations and breaches with periodic exams

    The SLIMpro TMM incorporates a secure boot ROM and includes an EFUSE array, encryption engine, RTC, Public Key Accelerator and True Random Number Generator (TRNG). Encryption hardware delivers inline Internet Protocol Security (IPSec) support Advanced Encryption Standards (AES) AES-GCM and AES-GMAC along with Encapsulating Security Payload (ESP) encryption and authentication at wirespeed rates. It has an on-chip protected cryptographic boundary for private/public storage for authentication handshaking. Lookaside security utilizes the integrated DMA engine as well as the TRNG and a Public Key Accelerator.

    The 250 MHz SLIMpro is the first component of the chip to start up controlling the secure booting of the 1 GHz PowerPC 465 processor core. The PowerPC core has a floating point unit, 32 Kbytes of L1 I-cache, 32 Kbytes of D-cache and a 256 Kbyte L2 cache with hardware I/O coherency. The DDR3 memory controller optionally supports ECC. Network support is provided by four 10/100/1000 Ethernet ports (RGMII & SGMII) with network offload support including the Programmable Packet Accelerator, a Queue Manager, and a Traffic Manager. The chip also has a pair of PCI-Express Gen1/2 ports, two USB 2.0 with integrated PHY, two SDHC ports and a SATA 2.0 port.

    The 40nm chip comes in a 19mm by 19mm WB-PBGA package.

    About the Author

    William G. Wong | Senior Content Director - Electronic Design and Microwaves & RF

    I am Editor of Electronic Design focusing on embedded, software, and systems. As Senior Content Director, I also manage Microwaves & RF and I work with a great team of editors to provide engineers, programmers, developers and technical managers with interesting and useful articles and videos on a regular basis. Check out our free newsletters to see the latest content.

    You can send press releases for new products for possible coverage on the website. I am also interested in receiving contributed articles for publishing on our website. Use our template and send to me along with a signed release form. 

    Check out my blog, AltEmbedded on Electronic Design, as well as his latest articles on this site that are listed below. 

    You can visit my social media via these links:

    I earned a Bachelor of Electrical Engineering at the Georgia Institute of Technology and a Masters in Computer Science from Rutgers University. I still do a bit of programming using everything from C and C++ to Rust and Ada/SPARK. I do a bit of PHP programming for Drupal websites. I have posted a few Drupal modules.  

    I still get a hand on software and electronic hardware. Some of this can be found on our Kit Close-Up video series. You can also see me on many of our TechXchange Talk videos. I am interested in a range of projects from robotics to artificial intelligence. 

    Email

    Continue Reading

    Sponsored Recommendations

    Comments

    To join the conversation, and become an exclusive member of Electronic Design, create an account today!