The number of connected devices, machines, sensors, or simply things are linked with each other over open communication networks on the internet of things (IoT) has exploded. Processes are remotely monitored through networks of smart devices. And every device represents a potential entry point for malicious intrusion – into the device itself, or the network to which it’s connected. These new security threats pose technology challenges in securing and stabilizing such large systems. In such an environment, secure device identity is an essential requirement for clone-resistant operational security.
The Intrinsic ID Zign® 100 API enables IoT developers to generate unique device identities, secure cryptographic keys, and random values. It enables easy and collision-free identification of billions of devices from different vendors. Zign 100 can also be integrated as a hardware-based trust anchor for Mbed TLS, OpenSSL, wolfSSL, and other libraries, extending the chain of trust beyond just a single device. Because it is a software-based solution, Zign is the only hardware entropy source currently available that doesn’t have to be loaded at silicon fabrication.
Features
- Uses standard SRAM as a physical unclonable function (PUF) to create a device-unique identity and cryptographic keys
- Keys are never stored, but re-created from the PUF each time they are needed
- Keys are bound to the device and can only be recreated and accessed on the device on which they have been created
- NIST SP 800-90A/B compliant random number generator
Benefits
- Easy and collision-free identification of billions of devices from various vendors
- A trust anchor can be installed later in the supply chain, or even remotely retrofitted on deployed devices
- Offers stronger protection than traditional key storage in NVM
- Seamlessly integrates with other crypto such as Mbed TLS, wolfSSL, and OpenSSL
- Proven technology with 500M+ devices in the field
- Zign 100 is post-quantum secure
Deliverables
- Zign 100 is delivered as a library compiled for a specific target chip, along with API specifications and a user manual. The solution is available in off-the-shelf configurations with size ranging between 6.8 kB and 7.9 kB.
Block Diagram of the Intrinsic ID Zign® 100 - Software implementation of SRAM PUF