Stories
Slash Boxes
Comments

SoylentNews is people

Cambridge Boffins and Google Unveil OpenTitan, an Open-Source Blueprint for a Root of Trust

posted by Fnord666 on Wednesday November 06 2019, @04:23PM   Printer-friendly
from the trust-must-be-earned dept.

"exec" writes:

Arthur T Knackerbracket has found the following story:

OpenTitan – an open-source blueprint for a Root of Trust (RoT) system-on-chip based on RISC-V and managed by a team in Cambridge, UK – was teased by Google along with several partners today.

Hardware RoT is a means of verifying the firmware and system software in a computing device has not been tampered with, enabling features such as secure boot. Hardware RoT can also verify the integrity and authenticity of software updates, and prevent a system from being rolled back to an earlier version with known vulnerabilities. It is the lowest-level security piece in a trustworthy system.

But can you trust the RoT itself? The goal of OpenTitan is to provide an open-source design for RoT silicon so that it is (as far as possible) open for inspection.

The OpenTitan SoC will use the RISC-V open-source CPU instruction set architecture, and will be managed by lowRISC, a nonprofit in Cambridge, which has "an open-source hardware roadmap in collaboration with Google and other industry partners," we're told.

Today's announcement comes from Google, Western Digital, the ETH Zurich university, chip maker Nuvoton Technology, and friends.

The Apache 2.0-licensed OpenTitan SoC will include the lowRISC Ibex microprocessor design, cryptographic coprocessors, a hardware random-number generator, volatile and non-volatile storage, IO peripherals, and additional defensive mechanisms. It can be used in any kind of device, from servers and smartphones to Internet-of-Things gadgets.

-- submitted from IRC

Original Submission

 
This discussion has been archived. No new comments can be posted.
Cambridge Boffins and Google Unveil OpenTitan, an Open-Source Blueprint for a Root of Trust | Log In/Create an Account | Top | 19 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 2) by captain normal on Thursday November 07 2019, @06:52PM (1 child)

    by captain normal (2205) on Thursday November 07 2019, @06:52PM (#917431)

    First of all if you have a maid, you are likely living way above my pay grade. I do not find it demeaning to help clean up around the house, do laundry, wash dishes, cook or serve meals. If you do have servants in your household, then you are at their mercy when it comes to guarding your secrets.
    Second, how does having a device that I do not have control over make it more secure?

    --
    Everyone is entitled to his own opinion, but not to his own facts"- --Daniel Patrick Moynihan--
    Starting Score:    1  point
    Karma-Bonus Modifier   +1  
    Total Score:   2  

  • (Score: 0) by Anonymous Coward on Thursday November 07 2019, @09:41PM

    by Anonymous Coward on Thursday November 07 2019, @09:41PM (#917542)

    A device with a trust root that you have control over can be made more secure than one without it. You could replace all the trust keys with your own at which point no software you have not personally signed can be loaded or run.