Google after six years of work on the project announced About the beginning of the production of a chip built on the basis of an open platform opentitan . The chip is produced by Nuvoton and was awarded as the first implementation of Opentitan, ready for use in working projects. Currently, a trial batch has been released for testing, and the launch of mass production is scheduled for the spring of this year.
Opentitan is a platform for creating trustworthy components (ROT, ROOT of TRUST) used where it is necessary to guarantee the integral state of hardware and software elements of the system. For example, in order to certify that the critical parts of the system were not replaced and are based on the code -proven and authorized code. The project provides a finished, verified and reliable frame that allows you to increase confidence in the created solutions and reduce costs in the development of specialized chips to ensure safety.
Opentitan chips can be used in server motherboards, network cards, consumer devices, routers, Internet devices for verification of firmware and loaded components, as well as to generate cryptographically unique system identifiers (protection against equipment replacement), protecting cryptographic keys (insulation of keys in the case of an attacker of physical access to equipment), providing services related to the safety of services and conducting an isolated audit log that cannot be edited or erase.
Opentitan includes various logical blocks that are in demand in ROT chips such as open microprocessor based on architecture RISC-V (RV32IMCB IBEX), cryptographic accompaniment of random numbers, keys to the support of Dice, manager The mechanism of secure data storage in permanent and RAM, protection technology, input/output units, safe loading products, etc. The device also provides blocks with the implementation of typical encryption algorithms, such as AES and HMAC-SHA256, and an accelerator of mathematical operations used in algorithms for working with digital signatures based on open keys, such as RSA and algorithms based on elliptical curves.
Initially, the project was founded by Google, but after transferring Lowrisk to its development, companies such as Western Digital, Seagate, Nuvoton Technology, Rivos, Zerorisc and G+D Mobile Security joined. The code related to the project and the specification of hardware components published under the Apache 2.0 license. The solutions used in Opentitan are based on technologies already used in cryptographic USB-tokens google titan and tpm-chips