Download
Share
Print this page
Xilinx Zynq-7000 Manual
  1. Manuals
  2. Brands
  3. Xilinx Manuals
  4. Computer Hardware
  5. Zynq-7000
  6. Manual
Xilinx Zynq-7000 Manual

Xilinx Zynq-7000 Manual

Hide thumbs Also See for Zynq-7000:
1
2
3
4
5
6
7
8

Advertisement

Quick Links

Download this manual
XILINX CONFIDENTIAL — DISCLOSED UNDER NDA
Zynq-7000 EPP TRM

Chapter 33: Device Security

XTP176 (Draft) February 15, 2012
NOTICE: This pre-release document contains confidential and proprietary information of Xilinx, Inc. and is being disclosed to
you as a participant in an early access program, under obligation of confidentiality. You may print one (1) copy of this document
for evaluation purposes. You may not modify, distribute, or disclose this material to anyone, including your employees,
coworkers, or contractors (these individuals must apply for separate access to the program). This document contains
preliminary information and is subject to change without notice. Information provided herein relates to products and/or services
not yet available for sale, and provided solely for information purposes and are not intended, or to be construed, as an offer for
sale or an attempted commercialization of the products and/or services referred to herein.
Zynq-7000 EPP Technical Reference Manual
UG585 (DRAFT) February 15, 2012
www.xilinx.com
1

Advertisement

loading

Related Manuals for Xilinx Zynq-7000

Summary of Contents for Xilinx Zynq-7000

  • Page 1: Chapter 33: Device Security

    XTP176 (Draft) February 15, 2012 NOTICE: This pre-release document contains confidential and proprietary information of Xilinx, Inc. and is being disclosed to you as a participant in an early access program, under obligation of confidentiality. You may print one (1) copy of this document for evaluation purposes.
  • Page 2 (including loss of data, profits, goodwill, or any type of loss or damage suffered as a result of any action brought by a third party) even if such damage or loss was reasonably foreseeable or Xilinx had been advised of the possibility of the same.
  • Page 3 33 Device Security 33.1 Introduction The Zynq-7000 devices support the ability to perform a secure boot to load encrypted PS images and PL bitstreams. 33.1.1 Terminology In order to reduce confusion, the following terminology will be used in this chapter:...
  • Page 4 33.2 Master Secure Boot The Master Secure Boot mode is the only secure boot mode that Zynq-7000 supports. It uses the hardened AES de- cryption engine and the hardened HMAC authentication engine within the PL to decrypt the encrypted image. The boot process and data flow for the Master Secure Boot mode are shown in Figure 1.
  • Page 5 XILINX CONFIDENTIAL — DISCLOSED UNDER NDA 33.2.1 External Boot Devices Zynq-7000 secure boot mode is restricted to NOR, NAND, or Quad SPI FLASH as the external boot device. A secure boot from JTAG or any other external interface is not allowed.
  • Page 6 There cannot be a mix of encrypted and non-encrypted partitions in a boot image. 33.2.3 eFuse Settings The Zynq-7000 secure boot features can also be controlled via three PL eFuse bits that are described in Table 2. Table 2 eFuse Settings Summary...
  • Page 7 Chapter 32: Device Security XILINX CONFIDENTIAL — DISCLOSED UNDER NDA 33.3.3 HMAC Signature The authentication method requires a signature that must also be supplied to the bootgen software. This signature is not loaded into the PL directly via JTAG like the AES key. It is contained and protected by the encrypted boot image and the encrypted bitstream.
  • Page 8 Chapter 32: Device Security XILINX CONFIDENTIAL — DISCLOSED UNDER NDA The PS DAP controller can be permanently bypassed using the “JTAG CHAIN DISABLE” eFuse. The JTAG access to the PL can be disabled by setting the DISABLE_JTAG configuration option when creating the PL bitstream see UG628, Command Line Tools User Guide for more information.