当前位置:首页 > 报告详情

20260218_A-101_Li.PDF

上传人: 彩旗 编号:1158826 2026-03-02 14页 343.79KB

1、Scalable Chiplet Integration with UCIe 3.0 and RoTLuis Li,Senior Member Technical Staff Emmanuel Carballo,Senior Member Technical Staff Presentation overviewThe UCIe Management Director-Discovers chiplets and Management Elements-Discovers and configuring Management Ports-Is the manageability Root of

2、 Trust(RoT)-Coordinates overall management of the SiP2UCIe manageability architecture goals-Support for management using mainband or sideband is mainband protocol agnostic-The required core capabilities of UCIe manageability may be realized in hardware allowing simple chiplets to remain simple-UCIe

3、Chiplets that support manageability may be used to realize products for a variety of markets(with different manageability and security requirements)-UCIe manageability is intended to foster an open chiplet ecosystem where SiPsmay be constructed from chiplets produced by different vendors(security th

4、reat)3Multi-Vendor SiP Security Threats Untrusted chiplet accessing sensitive data Malicious chiplet compromising system integrityUnauthorized access to configuration/secretsSupply chain attacks via compromised chipletsSide-channel attacks between chiplets Denial of Service attacks on shared resourc

5、es4How UCIe Root of Trust Mitigates These ThreatsManagement Director as Root of Trust(RoT)From UCIe Spec Section 8.1.3.5(Terms and Definitions):Management Director:Management Element that is responsible for discovering,configuring,and coordinating the overall management of the SiP and acts as the ma

6、nageability Root of Trust(RoT)“Security Role:Establishes a single trusted authority for the entire SiPAll security policies flow from this trusted entityValidates and authenticates chiplets before granting accessCoordinates security policy enforcement across vendors5Example:Multi-Vendor Security Sce

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
1. **UCIe管理架构目标**:支持主流带/侧带管理,硬件实现核心能力,兼容多市场产品,促进开放芯片生态系统。 2. **多厂商SiP安全威胁**:包括未授权访问、恶意芯片攻击、供应链风险及侧信道攻击等。 3. **管理总监作为RoT**:作为单一可信权威,验证芯片身份,执行安全策略,协调跨厂商安全(如访问控制、紧急隔离)。 4. **安全验证序列**:包括芯片允许列表检查(`negate_disallowed_entities_seq`)、资产类ID验证(`class_id_support_check_seq`)及运行时访问控制(`valid_access_seq`/`prohibited_access_seq`)。
**UCIe安全威胁有哪些?** **管理总监如何充当信任根?** **访问控制如何验证权限?**
客服
商务合作
小程序
服务号
折叠