feature article
Subscribe Now

Secure Your Communications

“You have zero privacy anyway. Get over it.”

Sun Microsystems’ cofounder Scott McNealy’s quote from January, 1999 (was that really 14 years ago?) was more right than we imagined—or hoped. Online bank accounts get hacked; Twitter gives away user information; customer databases go missing; traffic cameras record our comings and goings; and any number of smaller breaches of our presumed privacy occur every day. In the online world we’ve learned to assume that some sort of electronic record will be kept of our actions, if only because we’re so often reminded of it. 

Did you know that Google encrypts your search queries? But it’s not to protect your privacy—it’s to protect theirs. Google makes money (albeit indirectly) on the data it gleans from searches, and it doesn’t want competitors eavesdropping on that data.

Record-keeping and privacy are two different things, however. Just because some agency somewhere records the bits and bytes transferred from my IP address, that doesn’t necessarily mean they know anything about me. But protecting that data is a start, and a number of companies are working hard on that.

Chief among them is Freescale, the big-chip company that knows a thing or two about communications and networking chips. And the company has just launched a small family of encryption chips that make it easier to plug in encryption wherever you want it.

Say hello to my little friends, the ’C291, ’C292, and ’C293. They’re three related encryption processors that are software-compatible with one another, but with varying degrees of crypto muscle. All three are also pin-compatible, so you can up- and downgrade your crypto credentials as the need arises.

Freescale doesn’t come right out and say it, but the new ’C29x chips are aimed directly at the Nitrox products from competitor Cavium. Nitrox is the incumbent player here, so Freescale has a tall order ahead of it. On the other hand, the new ’C29x devices look to be quite a bit faster, and quite a bit cheaper, than Cavium’s current offerings. That’s a compelling combination for a device that most people treat as a commodity.

Without dedicated encryption processors, most people do crypto in software on their main microprocessor. That’s fine, but public-key encryption or elliptic-curve cryptography are hard—they’re meant to be—and therefore time-consuming on a general-purpose processor. Your average x86 Core i7 or PowerPC device just isn’t very well suited to cracking (or generating) encryption keys. Toss in a hundred dollars’ worth of dedicated crypto chip, however, and things go much more smoothly.

Each chip in the ’C29x family can be used in either of two ways. As a lookaside coprocessor, the chip sits on the PCIe bus and gets handed crypto tasks by the main processor. This makes for a neat and tidy offload when you’re already doing software crypto on the main CPU but want to toss it over to the new chip instead. In this mode, the ’C29x doesn’t require any memory of its own, just a PCIe connection to the main processor. Piece of cake.

In the other configuration, the ’C29x takes a more active role and can actually be the front-line communications processor instead of, or in addition to, a “real” communications processor. Here, Ethernet channels feed directly into the ’C29x for preprocessing before being handed off to another communications processor (if any) for further processing. In this mode, the ’C29x needs its own local memory as well as some NVRAM for key storage. The chip boots securely, verifying that it is, in fact, loading trusted code and keys. Freescale even designed the chip to deliberately muddle its own power consumption in order to thwart attacks that try to infer key length based on power usage. Sneaky stuff.

Power consumption for all three chips is in the single-digit range, hitting perhaps 10W for the fastest ’C293 chip at full boil. Throughput ranges from 8K to 32K 2048-bit RSA keys/second, according to Freescale. Being secure has never been so easy. Or so important.

Good Deeds Done Dirt Cheap

Think you’re a good engineer, programmer, or developer? How well could you describe a schematic, flowchart, or source code listing to a colleague?

Recording for the Blind and Dyslexic (RFB&D) is looking for engineers to read textbooks aloud for disabled engineering students. I started volunteering for this group almost 15 years ago, after spotting a small one-paragraph description at the bottom of a newspaper article. If you’ve got a few hours per month to help a fellow engineer, I heartily recommend it. Contact RFB&D (www.rfbd.org or www.LearningAlly.org) and they’ll set you up in a soundproofed recording booth where you’ll read college-level engineering texts while a fellow volunteer records you. Don’t worry; you get infinite do-overs if you flub your lines. Reading source code is pretty straightforward, but describing electrical schematics takes a bit of practice. If electronics engineering isn’t your thing, you can help out with other subjects. I was especially in awe of a woman in our group who read chemistry books, including complex chemical diagrams. That’s quite a skill. Anyway, go check it out. 

Leave a Reply

featured blogs
Oct 4, 2022
We share 6 key advantages of cloud-based IC hardware design tools, including enhanced scalability, security, and access to AI-enabled EDA tools. The post 6 Reasons to Leverage IC Hardware Development in the Cloud appeared first on From Silicon To Software....
Oct 4, 2022
Anyone designing a data center faces complex thermal management challenges . Yes, there's a large amount of electrical power required, but the other side of that coin is that almost all the power gets turned into heat, putting a tremendous strain on the airflow and cooling sy...
Sep 30, 2022
When I wrote my book 'Bebop to the Boolean Boogie,' it was certainly not my intention to lead 6-year-old boys astray....

featured video

PCIe Gen5 x16 Running on the Achronix VectorPath Accelerator Card

Sponsored by Achronix

In this demo, Achronix engineers show the VectorPath Accelerator Card successfully linking up to a PCIe Gen5 x16 host and write data to and read data from GDDR6 memory. The VectorPath accelerator card featuring the Speedster7t FPGA is one of the first FPGAs that can natively support this interface within its PCIe subsystem. Speedster7t FPGAs offer a revolutionary new architecture that Achronix developed to address the highest performance data acceleration challenges.

Click here for more information about the VectorPath Accelerator Card

featured paper

Algorithm Verification with FPGAs and ASICs

Sponsored by MathWorks

Developing new FPGA and ASIC designs involves implementing new algorithms, which presents challenges for verification for algorithm developers, hardware designers, and verification engineers. This eBook explores different aspects of hardware design verification and how you can use MATLAB and Simulink to reduce development effort and improve the quality of end products.

Click here to read more

featured chalk talk

High Voltage Charging Solution for Energy Storage & Backup Systems

Sponsored by Mouser Electronics and Analog Devices

Today there is growing demand for energy storage with more power, longer range, and longer run time. But the question remains: how can we increase our energy storage given the energy storage mediums on the market today? In this episode of Chalk Talk, Amelia Dalton chats with Anthony Huyhn from Analog Devices about the benefits of high voltage energy storage, why stacked battery cells are crucial to these kinds of systems, how high voltage energy storage systems can reduce conduction loss exponentially and what kind of high voltage charging solutions from Analog Devices are on the market today.

Click here for more information about the Maxim Integrated MAX17703 Li-Ion Battery Charger Controller