Secureing data at rest...
Securing “data-at-rest” with the same interoperability and data security available behind a firewall is essential to overall system security. The PDS8006 is specifically designed to provide a cryptographic system with secure key storage. When used in conjunction with a host processor and/or a cryptographic module, the PDS8006 will authenticate the client and calculate a 1024-bit response that can be used to unlock a proprietary code, a cryptographic library, a virtual machine layer or a cryptographic key. The security features of the PDS8006 combined with its long unattended shelf life makes it an ideal building block for security solutions.
Description...
The PDS8006 is a Secure Key Storage Integrated Circuit (SKSIC) designed to Department of Defense (DoD) specifications for the protection and security of data-at-rest. The tamper-reactive memory/security processor has been shown to provide secure storage for cryptographic keying material while combining tamper-reactive features with a battery-backed memory lifetime exceeding seven years when used with a 128mAh battery.
Tamper Response And Security...
There are two types of tamper events: those detected by the on-chip tamper detection circuits and those events detected by off-chip tamper detectors. For all tamper detected events the content of battery-backed RAMs will be zeroized.
Apart from informing the host of an existing tamper condition, the PDS8006 also logs the number of tamper attempts that have occurred. This is a cumulative number that the host controller can use to analyze abnormally high tamper activity.
Application Information...
The PDS8006 provides a cryptographic system with secure storage of keys. In a typical application, two types of keys are stored. One key is used to encrypt data common to similar systems. This key can be the same for all similar units which have the same security policy. Using the same key can simplify the production and distribution of updates. A second key is used to protect keying material which is unique to an individual unit or group of units. It is important that this key be different for each unit so that compromising one unit does not lead to the compromise of other units. The PDS8006 stores this keying material in battery backed SRAM, performs an authentication function, and, if successful, releases the authentication result. The authentication data input is sent as part of the authenticate command formed by the system processor from a user PIN input, from a Cryptographic Ignition Key (CIK), from data derived from a biometric measurement, or from a combination of these sources.
Battery-Backed Ram Operation...
The first time the battery is connected to the PDS8006, the device goes through an initialization state and is ready for Vcc to be supplied. The PDS8006 detects the presence of all power supplies and will automatically switch to the proper operational mode. When in the battery-backed RAM mode of operation, the current draw of the PDS8006 is less than 500nA, allowing for a seven-year unattended shelf life when used with a 128mAh battery.
Maintenance Mode...
Systems that use the PDS8006 may be designed so that the battery that maintains the contents of the battery-backed RAMs can be replaced without affecting the contents of the battery-backed RAMs. This can be done by applying Vcc to the PDS8006 while the battery is being changed. Additionally, the tamper input can be disabled through an authentication controlled maintenance mode. The input can be re-enabled once the maintenance is completed. This allows systems to be maintained without causing an intrusion detection and Zeroization of the battery backed SRAM variables.