CypheRix Secure Loaders for ARM 7 and 9 cores Go to Home page
 (with USB based tokens for code signature)

Overview

CypheRix has developed a cryptographically secured loader for the new STR91x family of microprocessors currently entering the market from ST Micro Electronics. This will allow users the confidence that old or foreign versions of software cannot be downloaded to you device. You can keep control over your own products while allowing later software downloads.

CypheRix has a USB security token system that will be enhanced to sign the code to be downloaded. These tokens were developed for use with our Audio Evidence Enrolment System. These tokens are sold in families or groups of three tokens. In order for code to be signed two of the three tokens must be present so that one of the two tokens can be armed and then used to sign the code. This allows secure control over the code signing procedure as at least two parties must come together to sign the code. So you can keep the tokens offsite and protect yourself against anyone signing versions of code you know nothing about.

Commercial Information

Please see our pricing page for a detailed price breakdown.

A detailed specification is available on request.

We would be willing to port the design to other devices than the STR91x. We may need to charge for the port depending on the required device.

Please contact Simon Rix on +27-11-615 2035 or simon@cypherix.co.za for more information.

The Bootstrap Loader

The loader allows the developer to securely download new software to the STR91x device. The loader will only allow legitimate versions of software to be downloaded. This allows the user to download updates and new versions of software to their products over an insecure medium in an unprotected environment.

The loader uses a RSA public key signature scheme to sign the code download. The system allows the developer to choose between either a ‘device specific’ or global download approach during development phase. If it is planned that software upgrades or features are to the sold under separate license the ‘device specific’ approach is suggested.

The loader will only accept new versions of software. This prevents earlier versions of code from being downloaded. The loader is resistant to various forms of reset attack during download.

The loader is available today using a UART for the download source. The customer is able to integrate other download methods (such as USB and SPI ) suitable for their specific system as we can provide the download source code as part for the license agreement. Alternatively we can offer consultancy services to assist the customer in the area.

Encryption of Download Software

We can add this to the software downloading on request. There will be 20% increase in the pricing of this feature.

Go to Home page