ATMEL DEBUTS TRUSTED COMPUTING GROUP 1.2 SECURITY PROCESSOR.Atmel Corporation has debuted its AT97SC3202 - Trusted Platform Module In computing, Trusted Platform Module (TPM) is both the name of a published specification detailing a microcontroller that can store secured information, as well as the general name of implementations of that specification, often called "TPM chip" or "TPM Security Device" (Dell). (TPM (1) See TP monitor. (2) (Transactions Per Minute) The number of transactions processed within one minute. See TPS. (3) (Trusted Platform M ) to support Trusted Computing Group See TCG. (TCG (Trusted Computing Group, Beaverton, OR, www.trustedcomputinggroup.org) The successor to the Trusted Computer Platform Alliance (TCPA), announced in 2003 by founding members AMD, HP, IBM, Intel and Microsoft. ) Standard 1.2. The new security processor is a single-chip security subsystem that protects the end user's privacy by providing tamper-proof storage and management of the user's identity, passwords and encryption keys. Atmel is the world leader in the TPM security processor market with 95% market share and has sold over 5 million (TCG 1.1-compliant) TPMs since 1998. In order to shorten time to market, Atmel's TPM version 1.2 development boards are currently being shipped to key chip-set and operating systems manufacturers, who are working to achieve early hardware compliance with final TPM 1.2 system level software specifications timed for later this year. When installed in a personal computer, the AT97S3202 can help to prevent Internet fraud, identity theft, email-born viruses like the recent MyDoom, and spoofing or phishing scams such as those perpetrated on Best Buy and PayPal customers, last summer. The TPM also records and stores measurements of the state of the system at boot up that can be used to help detect viruses or worms that affect the boot-up process. The TPM thwarts hackers by restricting access to data (e.g., passwords) to specific stages of the boot process. Device Architecture -- Atmel's AT97SC3202 TPM supports all TCG 1.2 enhancements and provides a complete, turnkey hardware security solution that integrates a high-performance, low-power, RISC processor; 2048-bit RSA (1) (Rural Service Area) See MSA. (2) (Rivest-Shamir-Adleman) A highly secure cryptography method by RSA Security, Inc., Bedford, MA (www.rsa.com), a division of EMC Corporation since 2006. It uses a two-part key. sign crypto-accelerator; hardware SHA-1 hash engine; a true random number generator A program routine that produces a random number. Random numbers are created easily in a computer, since there are many random events that take place such as the duration between keystrokes. ; 32 platform configuration registers (PCRs); a secure EEPROM (Electrically Erasable Programmable ROM) A rewritable memory chip that holds its content without power. Although EEPROMs spawned flash memory, EEPROMs are byte addressable at the write level, whereas flash chips must erase a block of bytes before rewriting. , SRAM See static RAM. SRAM - static random-access memory , timer, real-time clock, LPC (language) LPC - A variant of C designed ca 1988 to program LP MUDs. interface to Intel and AMD (Advanced Micro Devices, Inc., Sunnyvale, CA, www.amd.com) A major manufacturer of semiconductor devices including x86-compatible CPUs, embedded processors, flash memories, programmable logic devices and networking chips. processors, two-wire serial interface for embedded applications; and tamper prevention circuitry that detects any attempts to read the chip's contents. Other tamper proof features include metal shield layers above the active circuitry, encrypted internal busses, high-security test procedures, and defenses against timing and power supply attacks. Atmel's TPMs include drivers for Linux and for Windows 98, 2000, XP, and NT 4.0 operating systems, as well as MAD and MPD MPD maximum permissible dose. MPD abbr. 1. maximal permissible dose 2. multiple personality disorder Multiple personality disorder (MPD) BIOS drivers. TCG 1.1 -- TCG 1.1 specification features of Atmel's first generation TPM, AT97SC3201 include: 1) on-chip asymmetrical key pair generation (up to 2048 bit key length) using a hardware random number generator In computing, a hardware random number generator is an apparatus that generates random numbers from a physical process. Such devices are often based on microscopic phenomena such as thermal noise or the photoelectric effect or other quantum phenomena. , public key signature, and decryption to enable secure storage of data and digital secrets; 2) storage of hashes (unique numbers calculated from pre-runtime configuration information) that enable verifiable attestation of the machine configuration when booted and prevent data from being accessed unless the machine is in a pre-specified state; 3) an endorsement key that can be used to establish secure, anonymous identity keys that can be trusted to have been generated and stored on a real TPM; and 4) initialization in·i·tial·ize tr.v. in·i·tial·ized, in·i·tial·iz·ing, in·i·tial·iz·es Computer Science 1. To set (a starting value of a variable). 2. To prepare (a computer or a printer) for use; boot. 3. and management functions that allow the owner to turn TPM functionality on and off, reset the chip, and take ownership of its functions. These features are supported by the new TCG 1.2 processor as well. TCG 1.2 Enhancements -- Atmel's new AT97SC3202 security processor supports all TCG 1.2 enhancements, including transport sessions, a real-time clock, locality, save and restore context, direct anonymous attestation The Direct Anonymous Attestation (DAA) is a cryptographic protocol which enables the remote authentication of a trusted platform whilst preserving the user's privacy. The protocol has been adopted by the Trusted Computing Group (TCG) in the latest version of its Trusted Platform , nonvolatile store and delegation, as described below. Transport sessions allow the user to certify that the AT97SC3202 has executed certain commands (encryption, decryption, key generation, etc.), and to encrypt commands that are sent to the device. Transport sessions might be useful, for instance, to let the IT department know that the user has backed up his/her keys or properly configured the TPM on a notebook. The on-chip real-time clock allows the date and time to be included as part of a digital signature. The feature is applicable to electronically transmitted contracts, warranties, purchase agreements, or any document that is time-sensitive. Locality supports advanced security capabilities of specially designed microprocessors and/or system chips. Save and restore context allows the AT97SC3202's execution thread to be interrupted for the execution of another thread, and then resumed. Version 1.1 TPMs must complete execution of any authorization session before starting another. Save and restore context allows the most important processes to preempt less time-sensitive processes and improve performance. Direct anonymous attestation (DAA) allows the TPM to create Internet ID cards, called certificates that are used for digital signatures. Currently certificates must be purchased from third parties, such as Verisign. This feature protects the user's privacy. Nonvolatile store allows sensitive data that is currently stored on the system hard drive to be stored on the TPM chip, ensuring that this data is available during boot-up and protecting it from hard disk erasures. Delegation allows the owner of the TPM to selectively permit other entities to perform specified functions on the TPM that would otherwise require the presence of the owner. For example, generating an identity key. It also permits users to temporarily give a third party the ability to use any key, to generate a digital signature, for example. Price and Availability -- AT97SC3202 TPM development boards and Production samples are now available, in a 28-lead TSSOP TSSOP Thin Shrink Small Outline Package TSSOP Thin Scale Small Outline Package package, priced at $4.00 in quantities of 10,000. About TCG The Trusted Computing Group (TCG) is an open, industry standards organization formed to develop, define, and promote open standards for hardware-enabled trusted computing and security technologies, including hardware building blocks and software interfaces, across multiple platforms, peripherals, and devices. TCG specifications enable more secure computing environments without compromising functional integrity, privacy, or individual rights. The primary goal is to help users protect their information assets (data, passwords, keys, etc.) from compromise due to external software attack and physical theft. For more information, visit http://www.trustedcomputinggroup.org. About Atmel Founded in 1984, Atmel Corporation is headquartered in San Jose, California San Jose (IPA: /ˌsænhoʊˈzeɪ/) is the third-largest city in California, and the tenth-largest in the United States. It is the county seat of Santa Clara County. with manufacturing facilities in North America and Europe. Atmel designs, manufactures and markets worldwide, advanced logic, mixed-signal, nonvolatile memory and RF semiconductors. Atmel is also a provider of system-level integration semiconductor solutions using CMOS (Complementary Metal Oxide Semiconductor) Pronounced "c-moss." The most widely used integrated circuit design. It is found in almost every electronic product from handheld devices to mainframes. , BiCMOS, SiGe, and high-voltage BCDMOS process technologies. Atmel can be found on the World Wide Web at http://www.atmel.com/. For more information, call 719/540-1724. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion