DITES: A Lightweight and Flexible Dual-Core Isolated Trusted Execution SoC Based on RISC-V

A Trusted Execution Environment (TEE) is an efficient way to secure information. To obtain higher efficiency, the building of a dual-core system-on-chip (SoC) with TEE security capabilities is the hottest topic. However, TEE SoCs currently commonly use complex processor cores such as Rocket, resulti...

Full description

Saved in:
Bibliographic Details
Published inSensors (Basel, Switzerland) Vol. 22; no. 16; p. 5981
Main Authors Chen, Yuehai, Chen, Huarun, Chen, Shaozhen, Han, Chao, Ye, Wujian, Liu, Yijun, Zhou, Huihui
Format Journal Article
LanguageEnglish
Published Basel MDPI AG 01.08.2022
MDPI
Subjects
Algorithms
Communication
Confidential communications
Cryptography
Data exchange
Design
Design and construction
dual core
Embedded systems
Flexibility
Intellectual property
Internet of Things
Methods
Neural networks
Operating systems
RISC-V
Security systems
SoC
Software
Technology application
Testing
Trusted Execution Environment
China
Online AccessGet full text
ISSN1424-8220
1424-8220
DOI10.3390/s22165981

Cover

More Information
Summary:A Trusted Execution Environment (TEE) is an efficient way to secure information. To obtain higher efficiency, the building of a dual-core system-on-chip (SoC) with TEE security capabilities is the hottest topic. However, TEE SoCs currently commonly use complex processor cores such as Rocket, resulting in high resource usage. More importantly, the cryptographic unit lacks flexibility and ignores secure communication in dual cores. To address the above problems, we propose DITES, a dual-core TEE SoC based on a Reduced Instruction Set Computer-V (RISC-V). At first, we designed a fully isolated multi-level bus architecture based on a lightweight RISC-V processor with an integrated crypto core supporting Secure Hashing Algorithm-1 (SHA1), Advanced Encryption Standard (AES), and Rivest–Shamir–Adleman (RSA), among which RSA can be configured to five key lengths. Then, we designed a secure boot based on Chain-of-Trust (CoT). Furthermore, we propose a hierarchical access policy to improve the security of inter-core communication. Finally, DITES is deployed on a Kintex 7 Field-Programmable-Gate-Array (FPGA) with a power consumption of 0.297 W, synthesized using TSMC 90 nm. From the results, the acceleration ratios of SHA1 and RSA1024 decryption/encryption can reach 75 and 1331/1493, respectively. Compared to exiting TEE SoCs, DITES has lower resource consumption, higher flexibility, and better security.
Bibliography:ObjectType-Article-1
SourceType-Scholarly Journals-1
ObjectType-Feature-2
content type line 14
content type line 23
ISSN:1424-8220
1424-8220
DOI:10.3390/s22165981