All IPs > Security IP > Security Subsystems
In the world of integrated circuits, Security Subsystems Semiconductor IPs play a vital role in ensuring the confidentiality, integrity, and authenticity of data. These subsystems are meticulously designed to be incorporated into larger systems, providing robust security features crucial for combating the ever-evolving cyber threats. They are essential for a wide array of applications, including IoT devices, automotive systems, and consumer electronics, which demand stringent security measures.
Security subsystems often include components such as encryption and decryption engines, secure boot mechanisms, key management systems, and hardware-based random number generators. These components work in harmony to secure data transactions and storage within an electronic device. By integrating such advanced security features directly into the silicon, device manufacturers can significantly enhance the overall security posture of their products.
Furthermore, these security IPs are not only about protecting sensitive data but also about ensuring device integrity. Features such as tamper detection, secure firmware update, and access control play critical roles in preventing unauthorized access and modifications. This is particularly important in sectors like automotive, where safety and privacy are paramount, and IoT, where devices are often part of a broader network and are susceptible to remote attacks.
Products in the Security Subsystems category offer versatile and scalable solutions that cater to varying security requirements. They are designed to address specific needs, whether it's for securing a smartphone, enabling safe digital payment services, or protecting a vehicle's communication protocols. By choosing the right security subsystem semiconductor IP, developers can build products that not only perform efficiently but also comply with the highest security standards in today's connected world.
The Polar ID Biometric Security System offers an advanced, secure face unlock capability for smartphones, utilizing groundbreaking meta-optics technology to capture the full polarization state of light. Unlike traditional biometric systems, Polar ID distinguishes the unique polarization signature of human facial features, which adds an additional security layer by detecting the presence of non-human elements like sophisticated 3D masks. This system eliminates the need for multiple complex optical modules, thus simplifying smartphone design while enhancing security. Designed to fit the most compact form factors, Polar ID uses a near-infrared polarization camera at 940nm paired with active illumination. This configuration ensures functionality across various lighting conditions, from bright outdoor environments to complete darkness, and operates effectively even when users wear sunglasses or face masks. Smartphone OEMs can integrate this secure and cost-effective solution onto a wide range of devices, surpassing traditional fingerprint sensors in reliability. Polar ID not only offers a higher resolution than existing solutions but does so at a reduced cost compared to structured light setups, democratizing access to secure biometric authentication across consumer devices. The system's efficiency and compactness are achieved through Metalenz's meta-optic innovations, offering consistent performance regardless of external impediments such as lighting changes.
Securyzr iSSP is an integrated Security Services Platform designed by Secure-IC to offer comprehensive lifecycle management of device security. It provides zero-touch security lifecycle services that encompass provisioning, firmware updates, security monitoring, and device identity management. The platform employs a cloud-based architecture, enabling real-time updates and management of security protocols across a fleet of devices. Securyzr iSSP supports Post-Quantum Cryptography standards, ensuring readiness for future cryptographic challenges. This platform integrates seamlessly into diverse system environments, facilitating the protection of sensitive data through robust secure boot processes and key isolation techniques. It structures security around a core Root-of-Trust component named Securyzr iSE neo, which offers anti-tampering protection and dual computation for enhanced security. The platform aligns with an organization's security goals by providing customizable protective measures that are scalable to various applications. Securyzr iSSP is designed to maintain high security levels without compromising system performance or efficiency. By leveraging the latest advancements in cryptography and security protocols, it ensures the resiliency of systems against both physical and remote threats. This platform aids organizations in navigating the increasingly complex landscape of digital security challenges, providing a robust foundation for their cybersecurity strategies.
Microdul's Human Body Detector for Ultra-Low-Power is designed to be highly efficient, allowing devices to reduce power consumption when not in use. This innovative sensor effectively detects human presence, optimally adjusting the power usage in applications such as wearable devices. It stands out for its ability to maintain functionality with minimal energy requirements, making it ideal for prolonging the battery life of smart devices. The sensor operates dynamically to sense touch events, which can be crucial for wake-up functions and feature selections in a variety of applications. Its low power draw does not compromise its sensitivity or performance, providing reliable detection in various environments. With its sophisticated design, it enhances device efficiency by ensuring power is only used when necessary, effectively supporting battery-operated gadgets. The device benefits not only from its technical specifications but also from its adaptable integration but is specifically advantageous in fields requiring energy-harvesting solutions. By utilizing this sensor, products can be manufactured to meet energy efficiency standards, reducing environmental impact while maintaining user convenience.
The Aeonic Integrated Droop Response System is a groundbreaking approach to managing voltage droop in complex IC environments. This solution combines fast multi-threshold detection with churn-key integration of fine-grained dynamic voltage and frequency scaling capabilities. It offers advanced features such as tight coupling of droop detection and response, leading to the fastest commercial adaptation times that can significantly reduce margin requirements and power usage. The system’s observability features provide valuable data for silicon health assessments and lifecycle management. Process portability ensures scalability across different technology nodes, making the solution versatile for use in various sophisticated systems. This system is crucial for managing droop-induced challenges, and its integration with current architectures leads to enhanced system power and performance efficiency.
The eSi-Crypto suite by EnSilica is a comprehensive collection of cryptographic IP cores designed for both ASIC and FPGA architectures, aiming for minimal resource consumption while ensuring high throughput. A key component within this suite is the True Random Number Generator (TRNG), which adheres to NIST 800-22 standards and is offered as a hard macro in target technologies. Its configurable options are tailored to balance resource efficiency with throughput, making it essential for robust encryption solutions. These IP cores are available as stand-alone modules or integrated with AMBA APB/AHB or AXI bus interfaces.\n\nThe suite supports a variety of cryptographic algorithms such as CRYSTALS Kyber, CRYSTALS Dilithium, elliptic curve cryptography (ECC/ECDSA), RSA, AES, SHA1/SHA2/SHA3, ChaCha20, Poly1305, and TDES/DES. These diverse implementations can be tailored for specific use cases, including high-throughput core configurations ideal for applications like V2X communications. Additionally, the suite's ECC/ECDSA capabilities provide secured digital signature mechanisms, critical for applications requiring stringent data integrity and authenticity.\n\nEnSilica's dedication to cryptographic excellence is further evidenced in their sophisticated handling of secure web-server implementations. By leveraging their ultra-low-power accelerators, particularly for algorithms like ChaCha20 and Poly1305, eSi-Crypto reduces computational overhead while optimizing security performance. This makes the suite a preferred choice for customers seeking efficient and reliable cryptographic solutions across varied technology platforms.
The NS Class is Nuclei's crucial offering for applications prioritizing security and fintech solutions. This RISC-V CPU IP securely manages IoT environments with its highly customizable and secure architecture. Equipped to support advanced security protocols and functional safety features, the NS Class is particularly suited for payment systems and other fintech applications, ensuring robust protection and reliable operations. Its design follows the RISC-V standards and is accompanied by customizable configuration options tailored to meet specific security requirements.
The ArrayNav Adaptive GNSS Solution ushers in an era of enhanced automotive navigation, leveraging advanced adaptive antenna technology. This solution expertly applies multiple antennas to increase antenna gain and diversity, offering substantial advancements in navigation precision and operational consistency within complex environments. By integrating array-based technology, ArrayNav is tailored to improve the sensitivity and coverage necessary for sophisticated automotive systems. ArrayNav's use of adaptive antennas translates to significant reductions in issues such as multipath fading, which often affects navigation accuracy in urban canyons. With these enhancements, the solution ensures more reliable performance, boosting accuracy even in challenging terrains or when faced with potential signal interference. This solution has been specifically engineered for applications that demand robustness and precision, such as automotive advanced driver-assistance systems (ADAS). By employing the ArrayNav technology, users can benefit from higher degrees of jamming resistance, leading to safer and more accurate navigation results across a broad range of environments.
Suite-Q SW is a versatile cryptographic software library provided by PQSecure, crafted to enhance the security capabilities of devices through efficient cryptographic processing. Available in portable C code and optimized assembly variations, Suite-Q SW caters to a wide array of processors, including both general-purpose and embedded CPUs. This software library is engineered to optimize code size, stack usage, and overall performance, allowing it to operate effectively even on memory-limited devices. It provides a comprehensive set of cryptographic functions including secure hashing, encryption, and digital signatures, designed to meet the demands of diverse security scenarios. The software solution is an ideal choice for developers seeking ease of integration, support for hardware offload, and customization for specific needs. Its plug-and-play architecture makes it straightforward to deploy across different platforms, providing a robust defense against modern security threats for IoT devices, mobile applications, and more.
Suite-Q HW is an integrated system-on-chip (SoC) solution by PQSecure designed to encapsulate complete cryptographic functionalities within a compact and efficient package. It targets both high-end servers and low-end embedded systems, offering a unified architecture that employs the same hardware accelerators across its different implementations. The hardware system integrates multiple cryptographic operations, including symmetric and asymmetric algorithms, within a streamlined chip design. This allows for a comprehensive offloading of cryptographic tasks, freeing up the main processor for other critical operations, and ensures rapid execution and enhanced performance. Additionally, Suite-Q HW's flexibility in configurations aids in balancing performance with silicon footprint, making it suitable for a diverse range of applications. Further, the solution is equipped with anti-tamper technologies and design features to resist side-channel attacks, a critical consideration in environments where secure operations are non-negotiable. Whether used in data-sensitive financial systems or IoT devices with limited computational resources, Suite-Q HW promises dependable security with optimal efficiency.
NeoPUF sets a high standard in semiconductor security by offering exceptionally fast random number generation capabilities that reach speeds up to 100 times faster than conventional methods. It is a versatile hardware security IP that forms the backbone of secure chips designed to combat evolving digital threats. NeoPUF's unique design offers an intrinsic level of security that harnesses the physical characteristics of silicon to create a naturally unclonable identifier for each chip. Used extensively in fields where security is paramount, NeoPUF helps ensure the integrity and confidentiality of data throughout the lifecycle of semiconductor devices. It's critically important in sectors such as IoT, automotive, and enterprise computing, where the cost of a security breach is high. The integration of NeoPUF provides a secure basis for implementing complex encryption keys and enhances the trustworthiness of digital transactions. By employing cutting-edge cryptographic measures, NeoPUF is considered a suitable foundation for future-proofing semiconductor systems against the anticipated quantum computing threats. It forms part of a comprehensive security solution, offering hardware-based security features that significantly enhance the reliability and safety of modern electronic devices.
The patented QDID PUF by Crypto Quantique utilizes quantum tunneling current variations to produce a unique identity in standard CMOS processes. This solution leverages oxide thickness variations and trap distributions in the gate oxide to create an unpredictable and unclonable physically unclonable function (PUF). As a hardware root-of-trust, it simplifies secure provisioning and emits high-entropy seeds resistant to side-channel attacks, supporting up to 256-bit security strength. The QDID PUF's robustness is confirmed through extensive testing, including adherence to NIST standards, making it an ideal choice for secure device identity and post-quantum cryptographic applications.
The SHA-3 Crypto Engine from KiviCore offers an efficient and secure solution for cryptographic hashing, specifically designed to perform high-speed data integrity verification and authentication. Compliant with NIST's FIPS 202 standard, this IP core facilitates extensions such as SHAKE-128 and SHAKE-256 for customizable output lengths. Aimed at securing transactions and communications in today's networks, the core provides high throughput and resilient operations against timing-based side channel attacks. Its compact design fits both ASIC and FPGA environments while maintaining robust security assurance. Extensively verified and characterized for multiple high-performance scenarios, the SHA-3 core finds application in SSL and IPsec protocols, secure boot systems, blockchain processing, and other domains requiring trustable encryption. Its AMBA AXI4 interface allows for straightforward hardware integration alongside a comprehensive suite of software resources and support documentation.
VeriSyno's Digital Systems and Security Solutions encompass a comprehensive set of offerings tailored to address the needs of secure data processing environments. These solutions feature a range of digital IP cores that can enhance the operational capabilities of processors, memory controllers, and communication interfaces. By leveraging these digital assets, VeriSyno aims to provide robust and efficient systems that prioritize security and performance. Designed to integrate seamlessly with existing hardware, these solutions are particularly critical in applications prone to demand high security, such as financial transactions and sensitive data processing. The security IPs ensure that data integrity and confidentiality are upheld, leveraging sophisticated encryption and protection mechanisms. Moreover, VeriSyno is agile in customizing its IP solutions to fit different process nodes and technological requirements, aiding in both rapid deployment and scalability of digital systems. This makes their offerings especially attractive to clients requiring high-end security implementations without compromising on performance or reliability.
Secure-IC's Post-Quantum Cryptography IP offers robust, future-ready security for digital communications, addressing the challenges of quantum computing on traditional encryption methods. This IP is crucial for systems that require long-term confidentiality and authenticity of data, ensuring they remain secure against threats posed by advancements in quantum computing. Designed to integrate seamlessly into existing hardware and software infrastructures, the Post-Quantum Cryptography IP is adaptable and scalable, providing flexibility in implementation. It supports a variety of cryptographic algorithms specifically chosen for their resistance to quantum attacks, ensuring they meet the highest security standards. By adopting this technology, systems can safeguard against potential future vulnerabilities that quantum processors might exploit. This IP is an essential component for industries looking to fortify their security measures, particularly in sensitive sectors such as defense, finance, and critical infrastructure. It provides a forward-thinking approach to cybersecurity, aligning with global trends and regulatory requirements for enhanced cryptographic solutions. By securing today’s systems against tomorrow’s threats, this IP is a strategic investment in sustained security resilience.
The DXT GPU is specifically designed to deliver robust graphics capabilities on mobile devices, providing the perfect foundation for applications that demand high performance alongside power efficiency. Leveraging advanced ray tracing capabilities, it brings desktop-level rendering quality to portable devices, enhancing user experiences in gaming, AR, and VR settings without compromising battery life.
The Security Protocol Accelerator by PQSecure is engineered to enhance the execution of various cryptographic protocols by offloading complex computation tasks from the main CPU, thereby accelerating the overall process. This specialized hardware component streamlines cryptographic operations such as encryption, decryption, and key exchanges, delivering faster and more reliable security processes. Designed to support a wide array of cryptographic protocols, including both symmetric and asymmetric types, the Security Protocol Accelerator is pivotal for organizations aiming to integrate high-speed security measures without compromising performance. It can be seamlessly integrated into existing network infrastructures, providing a scalable solution for enhancing secure communications in real-time applications. By implementing this accelerator, enterprises can expect significant improvements in handling secure transactions, reducing latency, and achieving lower power consumption compared to software-only implementations. This is particularly beneficial for environments with demanding processing requirements, such as data centers and cloud computing platforms, where efficient performance is crucial.
The DAES is a sophisticated cryptographic co-processor IP designed to implement the Rijndael encryption algorithm, which forms the basis of the Advanced Encryption Standard (AES). By supporting key sizes of both 128 and 256 bits, this core provides robust encryption capabilities through various cipher modes including ECB, CBC, CFB, OFB, and CTR, ensuring diverse applications can leverage these functionalities for enhanced data security. The DAES core is equipped with an internal key expansion module, allowing it to manage encryption and decryption operations efficiently. It offers seamless integration into APB, AHB, and AXI buses, enabling it to be easily incorporated into a wide variety of digital solutions where encryption is paramount. This IP core is adaptable, providing developers with a reliable and scalable solution to safeguard sensitive data across multiple platforms and environments. The DAES benefits sectors that heavily rely on encryption for secure transactions and communications, making it a valuable asset in industries like finance, government, and telecommunications.
The Cramium Personal Hardware Security Module (PHSM) by CrossBar is an integrated security solution that enhances digital asset security through its advanced ReRAM technology. Built with the capability for Multi-Party Computation (MPC), the Cramium PHSM provides robust key protection by eliminating the need for key reconstruction, thus reducing vulnerability to attacks. Utilizing FIDO2 authentication, the module is designed with an offline-by-default architecture, ensuring high assurance levels in protecting sensitive data. This protection is particularly crucial for applications operating within decentralized systems where security is paramount. Combining innovative memory and cryptographic technology, the Cramium PHSM is crafted to meet varying compliance needs, making it ideal for industries such as finance, healthcare, and information technology. The module enhances tamper resistance for cryptographic operations, ensuring secure storage and operation of sensitive information within protected environments. One of its unique features is the ability to offer robust authentication without relying on external network connectivity, effectively insulating assets from unauthorized access. Cramium PHSM exemplifies CrossBar's commitment to developing secure solutions for complex challenges presented by modern computational demands. Its modular design enables easy customization and integration, catering to specific industry requirements and assuring enterprises of enhanced cryptographic functionalities. The module not only safeguards digital secrets but also introduces an improved fault-tolerant element that minimizes risk from potential breaches or exploits.
FortiCrypt offers a robust and secure cryptographic framework specifically designed to thwart side-channel and fault injection attacks. This suite of cryptographic IP includes advanced protection mechanisms that ensure both high security and performance across various platforms. The IP core is meticulously engineered to deliver ultra-low power consumption, making it ideal for battery-operated and IoT devices. The FortiCrypt product line is versatile, supporting a wide array of cryptographic algorithms, including both classical and post-quantum variations. It integrates seamlessly with existing systems, requiring minimal integration overhead, and is validated to withstand real-world attacks. Its high bandwidth capacity, achieved through multi-pipeline architecture, makes FortiCrypt suitable for high-performance applications, ensuring rapid data throughput without compromising security. Furthermore, FortiCrypt's compliance with the highest industry standards, such as FIPS 140-3 and SESIP, assures its usage in applications requiring stringent security measures. Whether used for secure communication, data protection, or hardware defense, FortiCrypt establishes a fortress against unauthorized access and data breaches, demonstrating unparalleled resilience and efficiency.
FortiPKA-RISC-V is a powerful public key algorithm coprocessor designed to enhance cryptographic operations through streamlined modular multiplication techniques. This IP core offers robust protection against side-channel and fault injection attacks, ensuring high performance by eliminating Montgomery domain transformations. Engineered to maximize efficiency, FortiPKA-RISC-V supports a variety of cryptographic protocols, making it suitable for applications demanding high-speed data processing with minimal latency. Its architecture ensures seamless integration into systems requiring secure key exchanges and digital signature verifications, showcasing versatility across different computational platforms. Additionally, this coprocessor is built with a focus on reducing hardware footprint, making it ideal for space and power-conscious applications such as embedded systems and mobile devices. By aligning with industry-standard cryptographic requirements, FortiPKA-RISC-V provides an effective solution for environments requiring elevated security without compromising on computational speed or area efficiency.
The only PQC-first RoT with silicon-proven SCA resistance, and FIA PQPlatform-TrustSys is a complete PQC-focused security system that provides architects with the tools needed for the quantum age, and beyond. PQPlatform-TrustSys is a fully updatable Root-of-Trust subsystem, containing advanced post-quantum (ML-KEM, ML-DSA) and classical cryptography (ECC and RSA – essential for hybrid and legacy protocols during transition), enabling bulk encryption, hash acceleration, advanced accelerators for symmetric cryptography, including AES, SHA-2, SHA-3, HMAC, and seamless integration with third-party components. With crypto agility in mind, PQPlatform-TrustSys helps with the PQ/T hybrid secure-boot use case and includes our world-leading fault-tolerance and power/EM side-channel attack countermeasures.
The Low Power Security Engine offers a compact yet comprehensive solution for securing IoT devices. This hardware acceleration engine provides efficient processing capabilities for encryption, hash computations, and cryptographic operations like elliptic curve scalar multiplication. Engineered for minimal power usage and to withstand side-channel and timing attacks, it features built-in support for protocols such as ECDHE and ECDSA, ensuring that devices remain secure against sophisticated threats while optimizing performance in constrained environments.
The Securyzr Key Management System by Secure-IC is designed to provide robust management and protection of cryptographic keys within a wide array of systems. This system ensures that sensitive keys are securely generated, stored, and distributed, preventing unauthorized access and misuse while maintaining data confidentiality and integrity. Incorporating a variety of security mechanisms, the Securyzr Key Management System supports end-to-end encryption protocols and enables secure communication between devices. It is particularly beneficial for applications that demand high security, such as financial services, healthcare, and critical infrastructure. The system ensures compliance with international security standards, facilitating smooth implementation into existing IT infrastructures. The solution's flexibility allows for scalable deployment across different networks and systems, ensuring an adaptable approach to key management. By integrating this system, organizations can simplify the process of securing their keys, reduce the risk of breaches, and enhance their overall cyber defense posture. Enhanced features like lifecycle management and audit abilities make it a valuable tool for maintaining high security standards over time.
Designed for ultra-high search performance, the Stellar Packet Classification Platform plays a crucial role in FPGA environments where the sorting and management of network traffic is required. It uses intricate access control lists (ACL) and longest prefix match (LPM) methodologies to execute complex rule-based searches. This platform supports workloads of hundreds of millions of lookups per second, with key capabilities ranging from 25Gbps to over 1Tbps. This high-speed search functionality is enhanced by support for extensive rule sets and live updates, ensuring the platform remains adaptive to real-time data and network demands. The technology's ability to handle up to 480b keys further underlines its suitability for network-intensive solutions. Its applications span a wide sphere, from 5G infrastructure and BNG setups to firewall and anti-DDoS systems. For environments needing robust IPv4/v6 address lookups and efficient routing, the Stelllar Platform provides a comprehensive solution for maintaining high reliability and security within modern data-intensive contexts.
ReRAM Secure Keys from CrossBar deliver an innovative solution for secure computing, utilizing the unique properties of resistive random-access memory (ReRAM) to generate physically unclonable function (PUF) keys. These keys offer robust security, providing a high degree of randomness and stability essential for safeguarding modern electronic devices. CrossBar's secure keys adapt smoothly into existing semiconductor processes, particularly where traditional embedded flash memory solutions falter at smaller node sizes. Designed to withstand varied environmental conditions, ReRAM-based PUF keys resist tampering and sidestep the vulnerabilities associated with other traditional memory systems. They do not suffer from RF interference, providing an enhanced layer of security crucial for applications in automotive, data center, and industrial sectors. These secure keys reflect the powerful integration potential of ReRAM technology, ensuring data integrity under a wide range of operational environments. By leveraging the predictable characteristics of ReRAM, CrossBar ensures that these keys protect sensitive information against unauthorized extraction and mimicry. The secure key technology bolsters cryptographic processes, instilling confidence in secure boot and trusted platform modules. This innovative application of ReRAM underscores its versatility, enabling a new era of security measures in computational and smart device ecosystems.
The Geon Secure Execution Processor is a sophisticated security solution designed to offer cryptographic protection for sensitive data. Built on the proven BA22 architecture, this processor delivers superior processing efficiency, achieving 1.79 DMIPS/MHz and operating at speeds exceeding 450 MHz in 65 nm technology. Its design ensures cryptographic isolation of data, which is crucial for maintaining security across diverse applications. This processor is verified at the system level, making it suitable for various security demands. It incorporates multiple secure elements to protect against unauthorized access while maintaining optimal performance metrics. The Geon processor is an integral part of Beyond Semiconductor's robust security offerings, reflecting the company's commitment to providing comprehensive security solutions tailored to modern technological demands. By seamlessly integrating cryptographic safeguards, the Geon processor stands out as an indispensable asset for systems requiring a high level of data security and integrity. Its ability to function efficiently under demanding conditions makes it a preferable choice for developers aiming to protect their systems against evolving cyber threats.
The Integrated Secure Element (iSE) from Secure-IC serves as a comprehensive Root of Trust within System-on-Chip (SoC) architectures, delivering a fundamental layer of security. Embedded directly into the primary chip, the iSE facilitates essential security services such as secure boot, key management, and anti-tamper protection, providing a resilient shield against potential vulnerabilities. This technology is vital for ensuring that digital devices remain protected against both physical and digital intrusions. By isolating and protecting security-critical processes and information, the iSE helps maintain the integrity and confidentiality of data. It is highly valued in industries like automotive, IoT, and consumer electronics, where safeguarding data integrity and operational reliability is crucial. As cyber threats evolve, the iSE evolves with them, incorporating the latest encryption standards and defensive techniques. Its flexibility and robust architecture allow it to be deployed across various applications, making it a cornerstone of secure system design. Companies leverage the iSE to adhere to stringent security standards and maintain compliance with global security certifications.
FortifyIQ's Fault Injection Attack Countermeasures are designed to shield cryptographic devices from manipulations that cause malfunctions and data breaches. These techniques form a core part of security architectures that need to withstand sophisticated hacking attempts aimed at faulting the operational framework of hardware systems. These countermeasures incorporate multilayered protections at both the hardware and software level. They detect and neutralize inconsistencies introduced by fault injection methods, ensuring continued security and reliable operation regardless of the attack sophistication. All solutions are rigorously analyzed to validate their efficacy against diverse fault models. Crucial for high-security contexts like data centers and financial systems, the implementation of Fault Injection Attack Countermeasures guarantees operational integrity and prevents attackers from exploiting hardware weaknesses. FortifyIQ’s offerings emphasize robustness without compromising performance or elevating complexity, essential for environments where reliability is paramount.
Side-channel Attack Resistance technology by FortifyIQ focuses on defending cryptographic systems against unauthorized data breaches through physical observation. This protection suite is essential for devices targeted by side-channel metrics like power usage, electromagnetic emissions, or timing discrepancies, ensuring that sensitive data remains secure from spillover attacks. Developed with a keen understanding of modern attack vectors, this technology employs advanced countermeasures crafted from algorithmic optimizations and hardware-level enhancements. Each design component is thoroughly tested to close any vulnerabilities, protecting cryptographic keys and operations even under intense scrutiny from external attackers. FortifyIQ's Side-channel Attack Resistance solutions are a staple for environments with stringent security requirements, such as government, financial institutions, and defense sectors. By integrating these defenses, manufacturers can prevent leakage of critical information during cryptographic processes, maintaining a high level of trustworthiness and cyber resilience.
The SHA-3 Secure Hash Function Core is a fundamental building block for cryptographic operations, conforming to the latest security standards, including FIPS 180-4 and FIPS 202. This core supports a comprehensive range of standard functions such as SHA3-224, SHA3-256, SHA3-384, SHA3-512, and the extendable-output functions SHAKE-128 and SHAKE-256. It operates efficiently with up to 48 Mbit/MHz throughput and uses a minimal gate area of just 28,000, providing a compact yet powerful solution for embedding in security-critical applications. The flexibility in its design ensures it can be effectively incorporated into a variety of systems, offering high performance without excessive resource usage. The SHA-3 core represents a secure solution for developers needing robust cryptographic integrity within their systems, balancing high-speed processing with compactness and economic use of silicon real estate.
The FortiMac suite provides advanced cryptographic solutions specifically designed for rigorous protection against differential power analysis and fault injection attacks. This IP core specializes in HMAC SHA2-based applications, offering state-of-the-art security features that ensure both reliability and compactness. FortiMac's strength lies in its use of algorithmic defenses that are resistant to advanced side-channel attacks. The IP is highly adaptable, suitable for integration in both new and existing security systems. By minimizing power usage and gate count, FortiMac is an optimal choice for devices with stringent power and area constraints, delivering efficient performance without sacrificing security integrity. This product supports all major SHA2 hash functions, providing flexibility for developers and ensuring comprehensive protection for various cryptographic operations. Additionally, the IP is crafted to align with the highest security certifications, making it a trusted choice for secure communication and data integrity in sensitive sectors such as finance, telecommunications, and defense.
The Agile Secure Element IP is a versatile security enclave designed for straightforward integration into SoCs, providing essential elements for secure operations. This customizable IP includes a secure processor, cryptographic engines, and mechanisms for key storage and trusted execution, tailored to fit a wide range of system architectures. It supports a variety of cryptographic standards, including symmetric and asymmetric algorithms, while offering configuration options for post-quantum cryptography. Its modularity and compliance-readiness position it as an optimal solution for enhancing the security posture of complex multi-core systems and embedded applications.
QRoot Lite is a lightweight and configurable root-of-trust IP tailored for resource-constrained microcontrollers and IoT devices. The solution provides comprehensive security features such as secure boot, device attestation, and sealed storage, all in alignment with the TCG MARS specification. Designed to minimize silicon footprint, QRoot Lite integrates seamlessly via standard industry interfaces, ensuring a rapid and cost-effective implementation conducive to meeting regulatory compliance standards. This IP is ideal for integrating secure elements in low-power and cost-sensitive environments, offering a secure solution for modern connected devices.
The iShield Key is a versatile security solution designed to offer both digital and physical access control in one device. It simplifies authentication processes for IT systems, buildings, or secure printing solutions by integrating seamlessly into everyday workflows. The device supports features such as website, application, and online service security, making it an all-encompassing security key.
Foresemi's DesignHaven™ security IP series is mainly used to protect hardware data security, including mainstream international and domestic cryptographic algorithm computing modules that meet major standards. The series supports cutting-edge technologies such as CryptRoT and PQC based on CIM, deployable in ASIC or FPGA. Foresemi offers both independent IP and subsystem-level solutions compatible with ARM or RISC-V CPU. Features include Public Key Cryptography, Symmetric cipher SCE, and True Random Number Generators.
The FortiCrypt Library is a sophisticated suite of cryptographic tools engineered to provide secure software implementations resistant to power and fault analysis. With an emphasis on flexibility and efficiency, it facilitates secure cryptographic operations without specialized hardware. The library is adaptable to a variety of environments, from embedded systems to high-capacity servers. By focusing on ultra-low power consumption and streamlined integration, it offers an excellent solution for developers looking to bolster their software against potential vulnerabilities without redesigning existing hardware. This toolset is designed to enable secure data processing across a multitude of applications, particularly where the implementation of physical security measures is impractical. With its robustness firmly grounded in industry standards, the FortiCrypt Library is especially suited for deployment in sectors like automotive and industrial automation, where reliable software security is critical.
The iShield Hardware Security Module (HSM) by Swissbit is a plug-and-play security feature designed for IoT devices, ensuring the safe storage of security keys used in device authentication and registration. This USB-based module offers a straightforward retrofit solution for enhancing the security of existing hardware designs. With the capability to securely store private keys and certificates, the iShield HSM ensures they are protected against unauthorized access and duplication. This makes the module an ideal choice for integrating into cloud-connected or embedded systems requiring heightened security standards. The iShield HSM's compact form factor belies its powerful capabilities, making it an excellent choice for IoT applications where secure data processing and transmission are essential. Its implementation supports the upgrading of AWS IoT Greengrass devices, reinforcing data integrity and security in network-connected environments.
AES XP-DPA-FIA is a highly refined encryption module designed by FortifyIQ to fortify against side-channel and fault injection attacks. This core is particularly notable for delivering ultra-high bandwidth, making it a superior choice for applications requiring rapid and secure data processing. The IP leverages a multi-pipeline architecture, which allows it to sustain high throughput rates while maintaining robustness against unauthorized access. Its architecture enhances encryption efficiency, delivering optimal security for sensitive data transfers in high-performance computing environments. Certified by rigorous security standards, AES XP-DPA-FIA is tailored to meet the demands of modern electronic security needs. It is an invaluable component in sectors such as telecommunications and government operations, where data integrity and speed are critical.
The Security Upgrade Kit by Swissbit offers a straightforward retrofit solution for enhancing the security of embedded systems. Designed to integrate seamlessly with Linux-based applications, it leverages a microSD card to provide Security Level 2 protection for crucial data. This kit ensures that essential information such as configuration credentials, licenses, and external data are safeguarded from unauthorized access or duplication. It also supports the secure booting of firmware and applications, maintaining high data integrity across the system. Ideal for systems requiring bolstered hardware security, the Security Upgrade Kit facilitates robust encryption and access control measures to protect data against tampering and exploitation. Its ease of implementation and high level of protection make it an invaluable tool for developers looking to improve the security posture of embedded applications.
The iShield Key 2 is Swissbit’s newest iteration of their all-in-one security key, incorporating cutting-edge technology like MIFARE DESFire EV3 for top-tier security applications. It comes certified with FIPS 140-3 Level 3, ensuring maximum data protection and integrity for sensitive access scenarios. This security token is designed to deliver both digital and physical security in a seamless package, making it indispensable for environments requiring stringent security protocols. From network logins to secure building access, the iShield Key 2 is engineered to fortify the endpoint security strategies of businesses across the board. As technology evolves, the iShield Key 2 stays ahead, providing versatile features that cater to future security landscapes while enhancing user experience. It maintains a focus on usability, ensuring straightforward implementation along with highly secure authentication mechanisms.
PUFcc7 represents the latest evolution in PUFsecurity's line of crypto coprocessors, offering enhanced support for modern security protocols such as TLS1.3. This coprocessor extends the capabilities of its predecessors by upgrading its public-key cryptography, hash, and message authentication code algorithms, thus ensuring heightened security performance. Notably, PUFcc7 supports emergent algorithms such as EdDSA and X25519, while also providing configurable performance settings to adapt to varied security demands. Designed to maintain robust operation throughout a device's lifecycle, PUFcc7 is integral to efficient, secure device management, encompassing secure boot, instant and indirect key wrapping, and encryption data protection. Its API-driven design and ease of integration into existing systems make it a versatile choice for advanced security architectures.
The Digital PUF IP by Crypto Quantique provides a minimal-area, logic-based solution for generating unclonable seeds and establishing device identity. It supports integration into any SoC, offering secure boot and cryptographic key generation with a remarkably low silicon footprint. The Digital PUF works by leveraging static mismatches in logic cells to create high-entropy bitstrings unique to each device, complete with built-in error correction for dependable seed regeneration. This IP is particularly suited for applications requiring compliance with NIST standards for entropy and randomness, making it an ideal fit for secure device authentication and cryptography.
The iShield Key MIFARE FIDO Security Token integrates cutting-edge FIDO security principles with MIFARE DESFire capabilities to offer a comprehensive solution for both personal and enterprise-level security. This hybrid security token can handle authentication tasks across various platforms while ensuring streamlined identity management. Its design is aimed at providing highly secure access to networks, applications, and buildings, combining multiple layers of security in a single, portable device. The token's robust build and encryption features make it ideal for use in environments where data integrity and security are of utmost importance. This device facilitates secure, touch-based authentication, supporting systems that are compliant with FIDO protocols and MIFARE technologies. The iShield Key MIFARE is also future-proof, equipped to meet evolving security threats while maintaining user convenience and accessibility.
Join the world's most advanced semiconductor IP marketplace!
It's free, and you'll get all the tools you need to discover IP, meet vendors and manage your IP workflow!
No credit card or payment details required.
Join the world's most advanced AI-powered semiconductor IP marketplace!
It's free, and you'll get all the tools you need to advertise and discover semiconductor IP, keep up-to-date with the latest semiconductor news and more!
Plus we'll send you our free weekly report on the semiconductor industry and the latest IP launches!