卡利普特拉的密码学.pdf

《卡利普特拉的密码学.pdf》由会员分享，可在线阅读，更多相关《卡利普特拉的密码学.pdf（20页珍藏版）》请在三个皮匠报告上搜索。

1、Christopher Swenson(Microsoft)Jeff Andersen(Google)Mojtaba Bisheh-Niasar(Microsoft)Cryptography in CaliptraCryptography in CaliptraChristopher Swenson(Microsoft)Jeff Andersen(Google)Mojtaba Bisheh-Niasar(Microsoft)SecurityIROT:DICE,DPEROTM:MeasurementsACROT:secure boot and updatesCryptographic servi

2、cesPost-quantumOutlineCaliptas identity is derived from two components:Unique Device Secret(UDS)384 bits in Caliptra 1.x(512 bits in Caliptra 2.x)Random number burned into fuses at manufacturing timeField Entropy(FE)o256 bits burned into fusesoBurned into fuses after manufacturingIdentityAdditional

3、secrets and keys are derived from UDS and FE to form layered identities confirming with Device Identity Composition Engine(DICE)Derivations use HMAC and HMAC-based counter KDF(NIST SP 800-108)UDS Initial Device Identity(IDevID)(fixed at manufacturing time)IDevID+FE Local Device Identity(LDevID)(prov

4、isioned later)LDevID FMC AliasFMC Alias RT AliasRT Alias DPE contextsDICEDICE forms identity in layersIDevID key endorses LDevID certificateLDevID key endorses FMC alias certificateFMC alias key endorse RT alias certificateRT alias key endorses additional identities using DICE Protection Environment

5、(DPE)In 2.x,separate cert chains are generated for ECDSA(P384)and MLDSA87DICE CertificatesDICE DerivationsCaliptra authorizes firmware of other components and stashes the hashes of that firmware as measurementsCaliptra 2.x can also directly measure and load firmware of other components using the Man

6、ufacturing Control Unit(MCU)32 Platform Configuration Registers(PCRs)hold the results of measurementsEach PCR is 384 bitsPCR_QUOTE mailbox command gets PCRs(signed by FMC alias key)MeasurementsPCRsPCR numberTypeExtend controlDescriptionPCR0CurrentROMHolds Caliptras FMC measurement and ROM policy con