JP2021184584A - Semiconductor device and electronic system using the same - Google Patents

Abstract

To provide a semiconductor device including a processing device for attribute base encryption, and an electronic system using the same.SOLUTION: A semiconductor device includes a central processing unit (CPU), a RAM, a key management device, and a first processing device for attribute base encryption that is connected to a lower level of the key management device. The electronic system includes the semiconductor device, a nonvolatile memory, and a system board where the semiconductor device and the nonvolatile memory are mounted.SELECTED DRAWING: Figure 1

Description

The present disclosure relates to a semiconductor device, and is particularly effective as a technique applied to a semiconductor device provided with an attribute-based cryptographic processing device and an electronic system using the same.

Japanese Patent Application Laid-Open No. 2017-108293 describes a cryptographic arithmetic circuit that holds a device-specific key and a common key, and can execute encryption and decryption using the device-specific key and decryption using the common key. An LSI having an interface between a processor which is an example of a circuit using secret data and an external non-volatile memory is disclosed. When the LSI and the non-volatile memory are connected, the cryptographic calculation circuit decodes the data encrypted using the common key using the common key, and then encrypts the data using the device-specific key. Performs activation processing to write to the non-volatile memory. After the activation process, the encrypted data is read from the non-volatile memory, and the cryptographic operation circuit decodes it using the device-specific key and supplies it to the processor.

Japanese Unexamined Patent Publication No. 2017-108293

According to the examination of JP-A-2017-108293 by the present inventors, the following has been found. In a system board equipped with an LSI and a non-volatile memory, when writing the firmware, the firmware encrypted with the common key common to all chips is decrypted using the common key, and then re-used using the device-specific key. There was a problem that it was necessary to encrypt and it took a lot of manpower (time).

An object of the present disclosure is to provide a semiconductor device including a processing device for attribute-based cryptography and an electronic system using the same.

Other issues and novel features will become apparent from the description and accompanying drawings herein.

The following is a brief overview of the representative ones of this disclosure.

According to one embodiment, the semiconductor device includes a central processing unit (CPU), a RAM, a key management device, and a first processing device for attribute-based encryption connected below the key management device. To prepare for. Further, the electronic system includes the semiconductor device, a non-volatile memory, and a system board on which the semiconductor device and the non-volatile memory are mounted.

FIG. 1 is a block diagram showing a configuration example of the electronic system according to the first embodiment. FIG. 2 is a diagram showing an operation flow of the electronic system according to the first embodiment. FIG. 3 is a block diagram showing a configuration example of the firmware update system according to the second embodiment. FIG. 4 is a diagram illustrating an operation flow of firmware update of an electronic system.

Hereinafter, examples will be described with reference to the drawings. However, in the following description, the same components may be designated by the same reference numerals and repeated description may be omitted. It should be noted that the drawings may be represented schematically as compared with actual embodiments in order to clarify the description, but they are merely examples and do not limit the interpretation of the present invention.

FIG. 1 is a block diagram showing a configuration example of the electronic system according to the first embodiment. The electronic system SYS is composed of a semiconductor device IC, a communication semiconductor device COMM, a flash memory FLM as a non-volatile memory, and a system board SB on which these (IC, COMM, FLM) are mounted. The system board SB can also be called a circuit board. Semiconductor device ICs and communication semiconductor devices (communication devices) COMM are formed by a known CMOS manufacturing method for semiconductor chips such as single crystal silicon. Further, the flash memory FLM is formed by a flash memory manufacturing method known for semiconductor chips such as single crystal silicon.

The semiconductor device IC constitutes a microcontroller MCU, a central processing unit CPU, random access memory RAM as a volatile memory, and a key management device TSIP as a security IP (hereinafter, may be simply referred to as TSIP). And the bus BUS, these circuits (CPU, RAM, TSIP) are connected to each other via the bus BUS.

The key management device TSIP has a function to manage keys and block processing from a central processing unit CPU that is not permitted in advance. A coprocessor for cryptography (CP1, CP2) as a processing device for cryptography is connected under the key management device TSIP. The two cryptographic coprocessors (CP1, CP2) are configured to be inaccessible directly from the central processing unit CPU. The two coprocessors for encryption (CP1 and CP2) are the first coprocessor CP1 for attribute-based encryption as the first processing device and the second coprocessor for AES (Advanced Encryption Standard) encryption as the second processing device. Includes processor CP2 and.

The flash memory FLM is installed on the system board SB outside the microcontroller MCU, and is connected to the internal circuit (CPU, TSIP, etc.) of the microcontroller MCU via the bus BUS.

(Explanation of attribute-based cryptography)
The first coprocessor CP1 handles attribute-based cryptography. Attribute-based cryptography is a type of public key cryptography that uses an attribute access structure (attributes connected by AND or OR) as an encryption key, and attributes (s) are added to the decryption key. ing. The ciphertext can only be decrypted with a decryption key that meets the access structure of the attributes used in the encryption.

(Explanation of operation of electronic system)
FIG. 2 is a diagram showing an operation flow of the electronic system according to the first embodiment.

The semiconductor device IC (microcontroller MCU) has a key management device TSIP inside, and the key k common to all chips and the key k'unique to each chip are stored inside the key management device TSIP.

Here, let k_att be the decryption key of the attribute-based encryption having the license information of the electronic product using the semiconductor chip CHIP of this microcontroller MCU. The license information may be composed of, for example, a product name, a version, customer information, a product grade, support contract information, and the like.

AES (k, m) means that plaintext m is encrypted by the AES method using the key k.

Enc (att, m) represents that plaintext m is encrypted by the attribute-based cryptosystem using the attribute access structure att.

(Step S1)
Write the ciphertext C1 = AES (k, k_att) and the ciphertext C2 = Enc (att, FW) to the flash memory FLM. Ciphertext C2 can be decrypted with the decryption key k_att.

Here, the ciphertext C1 = AES (k, k_att) is a ciphertext in which the decryption key k_att of the attribute-based encryption method is encrypted by the AES method using the common key k for all chips.

The ciphertext C2 = Enc (att, FW) is a ciphertext in which the firmware FW is encrypted by the attribute-based encryption method. The firmware FW corresponds to the program executed by the central processing unit CPU.

(Step S2)
The central processing unit CPU transfers the ciphertext C1 in the flash memory FLM to the AES coprocessor CP2.

(Step S3)
The AES coprocessor CP2 decrypts the ciphertext C1 and retrieves the decryption key k_att.

(Step S3-2)
The decryption key k_att of the extracted attribute-based encryption is securely managed by the key management device TSIP.

(Step S4)
The AES coprocessor CP2 encrypts the decryption key k_att with the chip-specific key k'and calculates the ciphertext C3 = AES (k', k_att).

(Step S5)
The central processing unit CPU takes the ciphertext C3 from the AES coprocessor CP2 and writes it to the flash memory FLM. The central processing unit CPU also erases the ciphertext C1 from the flash memory FLM.

The feature of the first embodiment is that the decryption key k_att of the attribute-based encryption encrypted by AES using the common key k of all chips is written to the microcontroller MCU which is a general-purpose microcomputer, and then the microcontroller MCU is activated to activate the AES. Rewrite the encryption decryption key k_att from the chip common key k to the chip unique key k'. This makes it possible to securely install the encryption key (k, k') in the key management device TSIP of the microcontroller MCU even in an environment that is not sufficiently reliable, such as an external factory that is different from the manufacturer of the microcontroller MCU. It becomes. The reason is that in the key writing factory, the decryption key k_att of the attribute-based encryption is always handled in the state encrypted by AES (C1 = AES (k, k_att)), so it is related to the factory regardless of intentional or negligence. This is because one cannot know the attribute-based decryption key k_att.

Next, Example 2 will be described. In the second embodiment, the firmware update system and the operation flow of the firmware update will be described. FIG. 3 is a block diagram showing a configuration example of the firmware update system according to the second embodiment. The difference between the electronic system SYS in FIG. 3 and FIG. 1 is that the communication device COMM is connected to the server SRV that distributes the updated firmware (FW). The communication between the electronic system SYS and the server SRV does not have to be encrypted. Further, at the time of FIG. 3, the key management device TSIP is in a state of securely managing the decryption key k_att of the attribute-based encryption. Since the other configurations of FIG. 3 are the same as the configurations of FIG. 1, duplicated description will be omitted.

FIG. 4 is a diagram illustrating an operation flow of firmware update of an electronic system.

(Step S10: Preparation)
Store the update firmware (FWC) in the server SRV. It is assumed that this firmware FWC is encrypted using the access structure of the attribute (the attribute is connected by and or or) indicating the license that can be installed as the public key. That is, the update firmware FWC stored in the server SRV is the encrypted firmware C4 (C4 = Enc (att, FWC)). Since authentication is not required between the server SRV and the device to be installed, the server SRV may be a Web server without authentication.

(Step S11)
The device on which you want to install the firmware FWC (here, the electronic system SYS or microcontroller MCU) connects to the server SRV and downloads the encrypted firmware C4.

(Step S12)
The central processing unit CPU decrypts the downloaded firmware C4 by the attribute-based cryptographic coprocessor CP1 via the key management device TSIP. If this electronic system SYS or system board SB has a license to install the firmware FWC, it can decrypt the firmware C4 encrypted with the attribute-based encryption decryption key k_att, but if it does not have a license, it will be encrypted. The converted firmware C4 cannot be decrypted.

(Step S13)
The central processing unit CPU transfers the decrypted firmware FWC to the AES cryptographic coprocessor CP2. Encrypt the firmware FWC with the key k'on the AES coprocessor CP2. Then, the encryption firmware C5 (C5 = AES (k', FWC)) is obtained.

(Step S14)
The central processing unit CPU takes out the encryption firmware C5 from the AES encryption coprocessor CP2 via the key management device TSIP, and installs the encryption firmware C5 in the flash memory FLM. This completes the firmware FWC update (update).

The attribute-based cryptographic coprocessor CP1 exists under the key management device TSIP and can be executed only through the key management device TSIP, and the key management device TSIP manages the decryption key k_att of the attribute-based cryptography. As a result, even if the central processing unit CPU is infected with malware or the like, the decryption key k_att of the attribute-based encryption and the processing are protected, so that high security is maintained.

Since the attribute-based encryption decryption key (k_att) is installed in the general-purpose microcontroller MCU, it is possible to perform license processing only within the semiconductor chip CHIP when updating the firmware. Therefore, it is possible to reduce the management cost of the database (stores the identifier, license information, encryption key, etc. of each microcomputer) by the server and the encryption calculation (chip authentication, firmware encryption) processing on the server, which have been required in the past. ..

In the conventional online firmware update system, each time the target microcontroller is shipped, the identification information (serial number, etc.) of the microcontroller, the license information of the microcontroller, and the individual key k'of the microcontroller are stored in the server database. I had to register with.

The second embodiment eliminates the need to update the database when a new target microcontroller is sold. This is because if the decryption key (k_att) of the attribute-based encryption is written in the microcontroller MCU, the license can be managed on the microcontroller MCU side.

Although the invention made by the present inventor has been specifically described above based on Examples, it is needless to say that the present invention is not limited to the above-described embodiments and examples and can be variously modified. ..

SYS: Electronic system
IC: Semiconductor device
COMM: Semiconductor device for communication
FLM: Flash memory
SB: System board
MCU: Microcontroller
CPU: Central processing unit
RAM: Random access memory
TSIP: Key management device
BUS: Bus
CP1: First coprocessor for attribute-based cryptography
CP2: Second coprocessor for AES (Advanced Encryption Standard) encryption
K: Common key for all chips
k': Unique key for each chip
k_att: Decryption key for attribute-based encryption

Claims (9)

Central processing unit (CPU) and
RAM and
Key management device and
A semiconductor device provided with a first processing device for attribute-based encryption connected below the key management device. In the semiconductor device according to claim 1,
It has a bus to which the CPU, the RAM, and the key management device are connected.
The first processing device is a semiconductor device that cannot be directly accessed from the CPU. Further, in the semiconductor device according to claim 2.
A second processing device for AES (Advanced Encryption Standard) encryption connected to a lower level of the key management device is provided.
The second processing device is a semiconductor device that cannot be directly accessed from the CPU. A semiconductor device according to claim 3 and
With non-volatile memory
An electronic system including a system board on which the semiconductor device and the non-volatile memory are mounted. In the electronic system according to claim 4.
Let k_att be the decryption key of the attribute-based encryption that has the license information of the product using the semiconductor device.
The key management device holds a common key k and a unique key k', and
The non-volatile memory has the decryption key k_att encrypted with the ciphertext C1 = AES (k, k_att) encrypted by the AES method using the common key k, and the firmware (FW) encrypted by the attribute-based encryption method. Stores the ciphertext C2 = Enc (att, FW),
The CPU transfers the ciphertext C1 to the second processing device, and the CPU transfers the ciphertext C1 to the second processing device.
The second processing device decrypts the ciphertext C1 and takes out the decryption key k_att.
The extracted key k_att is managed by the key management device, and the decryption key k_att is managed by the key management device.
The second processing device encrypts the decryption key k_att with the unique key k'and calculates the ciphertext C3 = AES (k', k_att).
An electronic system in which the CPU takes out the ciphertext C3 from the second processing device and writes it in the non-volatile memory. Further, in the electronic system according to claim 5.
An electronic system that includes a communication device mounted on the system board and connectable to a server. In the electronic system according to claim 6.
The server stores the update firmware (FWC) as encrypted firmware C4 (C4 = Enc (att, FWC)).
The electronic system downloads the encrypted firmware C4 and
The central processing unit decodes the downloaded firmware C4 via the key management device by the first processing unit using the decryption key k_att.
The central processing unit transfers the decrypted update firmware (FWC) to the second processing device, and the second processing device encrypts the decrypted update firmware (FWC) using the unique key k'. , Obtain the encryption firmware C5 (C5 = AES (k', FWC)),
The central processing unit is an electronic system that takes out the encryption firmware C5 from the second processing device via the key management device and installs the encryption firmware C5 in the non-volatile memory. In the electronic system according to claim 7.
The server is an electronic system, which is a web server without authentication. In the electronic system according to claim 7.
Each of the first processing device and the second processing device is a coprocessor.
The non-volatile memory is an electronic system that is a flash memory.

Images