The Past and the Future of Renesas RX Family Software
In recent years, the number of IoT equipment has been increasing. The IoT equipment requires security implementation. In addition, not only the Linux-based equipment come with more security implementation , but also the smaller size and lower power consumption MCU-based implementation are increasing. Therefore, there is a challenge to implement higher-level security at a lower cost.
Renesas has extended the Renesas' propriety hardware secure IP (Trusted Secure IP) to the RX family as a custom chips for the specific field/customer for over 20 years.
The RX family with the Trusted Secure IP can realize the below three points.
Achieving Cryptographic Module Validation Program (CMVP) Level 3 certification under the FIPS 140-2 security standard by the National Institute of Standards and Technology (NIST). [News release]
Accelerating the cryptographic communication TLS (Transport Layer Security) essential for IoT equipment (about 20 to 30 Mbps with RX65N@120MHz), concealing the core parameter premaster secret in Trusted Secure IP.
Executing secure boot and firmware update function that are becoming essential security function for IoT equipment.
To support these, Renesas provides the following three points:
1. Security Policy that summarizes the standards for FIPS 140-2 Level 3 CMVP.
You can quickly learn the security standards required for IoT equipment based on the functional level of MCU-based embedded equipment.
2. The RX family with Trusted Secure IP, its compatible boards, and Driver software for Trusted Secure IP.
Among the RX family with Trusted Secure IP and its compatible boards, the RX72N Envision Kit is most ideal for evaluation of Trusted Secure IP. The firmware for the RX72N Envision Kit is released on GitHub. Renesas has prepared the page describing the overview of Trusted Secure IP and how to use the driver software here. I will also introduce the benchmark result of each cryptography algorithm tested with the RX72N Envision Kit by wolfSSL. These make it possible to evaluate the functionality and performance of cryptography algorithms such as AES/RSA/SHA/ECC/TRNG.
3. Software modules to control firmware update
When implementing the firmware update function, you must take various considerations such as a mechanism that allows auto-recovery at the next startup if the power is cut off during overwriting. Renesas has summarized these considerations as "Renesas MCU Firmware Update Design Policy". Applying this can also help your feasibility evaluation of the OTA function by using Amazon Web Service.
For security essential for IoT equipment, Renesas thinks that meeting general requirements and realizing it in a single chip can have cost advantages. So far, the difficulty of security implementation has been a barrier for electronic devices to connect to the internet. Renesas has developed this solution to remove this barrier and enable much more electronic devices to connect to the internet. Renesas will keep focusing on high-level security and easy-to-use products specification.
- +1 Like
- Add to Favorites
Recommend
- Renesas DSP Solution on Renesas Lab on the Cloud, Input Analog Signals Directly From A Signal Generator To The Rx231 Microcontroller Evaluation Board
- Renesas Introduces Functional Safety over EtherCAT for 32-Bit RX Microcontrollers (MCU)
- Renesas‘ Semiconductor Manufacturing Factory (Naka Factory) Fire: Production Capacity Has Recovered to 88%
- Renesas RX Becomes World‘s First General-Purpose MCU to Obtain CMVP Level 3 Certification Under NIST FIPS 140-2
- Renesas Announces 10 New Winning Combinations Integrating Celeno and Renesas Products
- Renesas & Altran to Deploy First Social Distancing Wristwatch Using Ultra-Wideband Chipset with Low Rate Pulse
- Renesas and FAW Establish Joint Laboratory to Accelerate Development of Next-Generation Smart Vehicles
- Silicon Labs Expands MCU Platform with a 50MHz Core Frequency New BB5 8-bit MCU Family
This document is provided by Sekorm Platform for VIP exclusive service. The copyright is owned by Sekorm. Without authorization, any medias, websites or individual are not allowed to reprint. When authorizing the reprint, the link of www.sekorm.com must be indicated.