Creating a Trusted Platform for Embedded Security-critical Applications

article
article
Article
October 08, 2020

Creating a Trusted Platform for Embedded Security-critical Applications

Published in Military Embedded Systems
By Richard Jaenicke of Green Hills Software and Steve Edwards of Curtiss-Wright

 

Security-critical applications, such as cross-domain solutions (CDS), require a secure, trusted platform on which to execute, spanning software, firmware, and hardware. The lowest layer that the application interacts with directly is a trusted operating system (OS). Trust in the OS is dependent on two factors: its robustness from a security perspective, and assurance that the OS was both loaded and configured correctly and never tampered with. OS trust also depends partly on trusted pre-OS functionality, such as secure boot firmware that executes before the OS.

The security robustness of computer hardware and software platforms is often specified by evaluation to the “Common Criteria for Information Technology Security Evaluation” (ISO/IEC 15408). Typically, Common Criteria targets of evaluation (TOE) are evaluated against a government-defined protection profile that includes both functional and assurance requirements. Evaluations can be done to different levels of depth and rigor, called Evaluation Assurance Levels (EAL), with EAL1 being the least rigorous and EAL7 being the most rigorous. Alternatively, a certain level of trust can be achieved through safety certifications. Although safety certifications provide a level of assurance for integrity and availability, they generally do not directly address confidentiality or other trust mechanisms.

...

Examples of trusted hardware and software solutions

Curtiss-Wright’s CHAMP-XD1S 3U VPX digital signal processing (DSP) module features an Intel Xeon D processor, an AMD Zynq UltraScale+ MPSoC FPGA, and a flash-based Microsemi SmartFusion2 FPGA to provide a secure processor board designed for high-performance embedded computing (HPEC). The module’s FPGA and software security features with TrustedCOTS Enhanced Trusted Boot capabilities, including an FPGA-based Root of Security to protect against malicious cyberattacks, probing, and reverse-engineering. The CHAMP-XD1S uses a TPM 2.0 security chip to support Intel TXT secure boot technology. The board also uses a PUF in the Zynq UltraScale+ MPSoC to generate the encryption key used to authenticate the boot code. That authentication can be used as the RoT to extend trust to other portions of the system. The SmartFusion 2 FPGA provides health and management functions and can integrate additional security functions.

Read the full article.

Steve Edwards

Steve Edwards

Director and Technical Fellow

Steve has over 25 years of experience in the embedded system industry. He leads Curtiss-Wright Defense Solutions’ efforts in addressing physical and cyber security on their COTS products and represents the company in defense related security conferences. Steve has worked collaboratively in several standard bodies, including a time chairing the VITA 65 OpenVPX, and as lead for the Sensor Open Systems Architecture (SOSA) Security Subcommittee. Steve lead the design of Curtiss-Wright’s first rugged multiprocessor and FPGA products and was involved in the architecture, management, and evangelization of the industry’s first VPX products. He has a Bachelor of Science in Electrical Engineering from Rutgers University.

Trusted Computing for Defense & Aerospace Learn More

Trusted Computing for Defense & Aerospace

Curtiss-Wright goes well beyond standard approaches to Trusted Computing to provide truly secure solutions for air, ground, and sea platforms. We keep cybersecurity and physical protection in mind, from design and testing to supply chain and manufacturing. This comprehensive, end-to-end approach creates an effective mesh of protection layers that integrate to ensure reliability of Curtiss-Wright products in the face of attempted compromise.

Learn More

Related Resources

Case studies
Building a Truly Trusted Computing Solution with COTS Hardware and Intel Security Capabilities
Brochures
TrustedCOTS and Enhanced TCOTS (eTCOTS) for Trusted Computing Brochure
Brochures
Curtiss-Wright and Wind River Trusted Foundations for Mission Critical Applications
No results found.
No results found.
White papers
The Root of Trust: A Foundation for Trusted Computing
White papers
Introduction to COTS-based Trusted Computing
White papers
Getting Secure, Intel-Based Solutions to Market Faster - Why the Hardware Vendor’s Boot Security Implementation Is So Important
White papers
Hardware Features for Maintaining Security During Operation
White papers
Considering the Role of Hardware in Securing OS and Hypervisor Operation
White papers
Developing a Secure COTS-Based Trusted Computing System
White papers
TrustedCOTS: Leading the Way to Secure Systems
White papers
Data Protection with the NXP QorIQ Platform Trust Architecture
White papers
Beyond Trusted Computing
White papers
Cybersecurity Trends in Aerospace and Defense Applications
White papers
Trends in Network Cybersecurity
White papers
Optimizing Cybersecurity on Today's Connected Military and Commercial Aircraft
White papers
Certification Authorities for Trusted Computing in Military and Avionics Products
White papers
Decomposing System Security Requirements
White papers
Establishing a Trusted Supply Chain
White papers
International Certification Authorities for Trusted Computing
White papers
The Impact of Protecting I/O Interfaces on System Performance
White papers
Trusted Boot
White papers
Trusted Computing White Paper: Application Development, Testing, and Analysis for Optimal Security