Intel Agilex 7 He Mahinga Kaiwhakamahi Haumarutanga Pūrere

Kei te kaha a Intel ki te haumaru hua me te taunaki i nga kaiwhakamahi kia waia ratou ki nga rauemi haumaru hua kua whakaratohia. Me whakamahi enei rauemi puta noa i te oranga o te hua Intel.

2. Nga waahanga haumaru kua whakamaheretia

Ko nga ahuatanga haumaru e whai ake nei kua whakamaheretia mo te tukunga a muri ake o te rorohiko Intel Quartus Prime Pro Edition:

Manatokonga Haumarutanga Aromatawai Anō Wahi: He whakapumautanga atu e kore e taea e nga awa moka Whirihora Anō (PR) te uru atu, te pokanoa ranei ki etahi atu roma bit PR persona.

Whakamate Whaiaro a te Pūrere mo te Anti-T tinanaamper: Ka mahi i te muru taputapu, te whakautu kore ranei o te taputapu me nga papatono eFuses kia kore ai e whirihora ano te taputapu.

3. Tuhinga Haumarutanga Wātea

Kei te ripanga e whai ake nei nga tuhinga e waatea ana mo nga ahuatanga haumarutanga taputapu i runga i nga taputapu Intel FPGA me te Structured ASIC:

Ingoa Tuhinga	Te kaupapa
Tikanga Haumarutanga mo nga Intel FPGAs me te Kaiwhakamahi ASICs Structured Arataki	Tuhinga o runga e whakarato ana i nga korero taipitopito o āhuatanga haumaru me nga hangarau i roto i te Intel Programmable Solutions Hua. Ka awhina i nga kaiwhakamahi ki te kowhiri i nga waahanga haumaru e tika ana te whakatutuki i o raatau kaupapa haumaru.
Intel Stratix 10 Aratohu Kaiwhakamahi Haumarutanga Pūrere	Nga tohutohu mo nga kaiwhakamahi o nga taputapu Intel Stratix 10 hei whakatinana nga ahuatanga haumaru i tautuhia ma te whakamahi i te Tikanga Haumarutanga Aratohu Kaiwhakamahi.
Intel Agilex 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere	Nga tohutohu mo nga kaiwhakamahi o nga taputapu Intel Agilex 7 hei whakatinana nga ahuatanga haumaru i tautuhia ma te whakamahi i te Tikanga Haumarutanga Aratohu Kaiwhakamahi.
He Aratohu Kaiwhakamahi Haumarutanga Pūrere Intel eASIC N5X	Nga tohutohu mo nga kaiwhakamahi o nga taputapu Intel eASIC N5X hei whakatinana nga ahuatanga haumaru i tautuhia ma te whakamahi i te Tikanga Haumarutanga Aratohu Kaiwhakamahi.
Intel Agilex 7 me Intel eASIC N5X HPS Cryptographic Services Aratohu Kaiwhakamahi	Nga korero mo nga miihini rorohiko HPS mo te whakatinanatanga me te whakamahi i nga whare pukapuka rorohiko HPS ki te uru atu ki nga ratonga tohu i whakaratohia e te SDM.
AN-968 Black Key Provisioning Service Aratohu Timata Tere	Whakaotia te huinga o nga hikoinga ki te whakarite i te Whakarato Patua Pango ratonga.

Pātai Auau

P: He aha te kaupapa o te Aratohu Kaiwhakamahi Tikanga Haumarutanga?

A: Ko te Aratohu Kaiwhakamahi Tikanga Haumarutanga e whakarato ana i nga whakaahuatanga mo nga ahuatanga haumaru me nga hangarau i roto i nga Hua Whakataunga Whakatupato a Intel. Ka awhina i nga kaiwhakamahi ki te kowhiri i nga waahanga haumarutanga e tika ana hei whakatutuki i o raatau whaainga.

Q: Kei hea e kitea ai e au te Aratohu Kaiwhakamahi Haumarutanga Pūrere Intel Agilex 7?

A: Ka kitea te Aratohu Kaiwhakamahi Haumarutanga Intel Agilex 7 i runga i te Intel Resource and Design Center webpae.

Q: He aha te ratonga Whakarato Kī Pango?

A: Ko te ratonga Black Key Provisioning he ratonga e whakarato ana i te huinga katoa o nga hikoinga ki te whakarite whakaritenga matua mo nga mahi haumaru.

View Fullscreen

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere
Whakahoutia mo Intel® Quartus® Prime Design Suite: 23.1

Putanga Tuihono Tuku Urupare

UG-20335

683823 2023.05.23

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 2

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 3

683823 | 2023.05.23 Tuku Urupare
1. Intel Agilex® 7

Ka mutu te Haumarutanga Pūrereview

Ka hoahoa a Intel® i nga taputapu Intel Agilex® 7 me nga taputapu haumaru, tino-whirihora me te maru.
Kei roto i tenei tuhinga nga tohutohu hei awhina i a koe ki te whakamahi i te rorohiko Intel Quartus® Prime Pro Edition ki te whakatinana i nga ahuatanga haumaru ki o taputapu Intel Agilex 7.
I tua atu, kei te waatea te Tikanga Haumarutanga mo nga Intel FPGAs me te Aratohu Kaiwhakamahi ASICs Structured i te Intel Resource & Design Center. Kei roto i tenei tuhinga nga whakaahuatanga mo nga ahuatanga haumaru me nga hangarau e waatea ana ma nga hua Intel Programmable Solutions hei awhina i a koe ki te kowhiri i nga ahuatanga haumarutanga e tika ana hei whakatutuki i o whaainga haumarutanga. Whakapa atu ki te Tautoko Intel me te nama tohutoro 14014613136 ki te uru atu ki te Tikanga Haumarutanga mo nga Intel FPGA me te Aratohu Kaiwhakamahi ASIC Hangarau.
Kua whakaritea te tuhinga e whai ake nei: · Motuhēhēnga me te Whakamanatanga: Ka tuku tohutohu hei hanga
nga taviri motuhēhēnga me ngā mekameka hainatanga, tono whakaaetanga me te whakakore, tohu taonga, me nga ahuatanga whakamotuhēhēnga papatono ki runga i nga taputapu Intel Agilex 7. · AES Bitstream Encryption: Ka whakarato tohutohu ki te hanga i te matua AES, whakamuna i nga awaawa whirihoranga, me te whakarato i te matua AES ki nga taputapu Intel Agilex 7. · Whakarato Pūrere: Ka tuku tohutohu ki te whakamahi i te punaha whakahaere a Intel Quartus Prime Programmer me te Kaiwhakahaere Pūrere Haumaru (SDM) ki nga ahuatanga haumarutanga o te kaupapa i runga i nga taputapu Intel Agilex 7. · Ngā Āhuahira Arā Atu Anō: Ka whakarato tohutohu kia taea ai ngā āhuatanga haumarutanga matatau, tae atu ki te whakamanatanga patuiro haumaru, te patuiro Pūnaha Tukatuka Maama (HPS), me te whakahou i te punaha mamao.
1.1. Whakaaetanga ki te Haumarutanga Hua
Ko te pumau roa a Intel ki te haumarutanga kaore ano kia kaha ake. E tino taunaki ana a Intel kia mohio koe ki o maatau rauemi haumaru hua me te whakamahere ki te whakamahi i aua mea puta noa i te oranga o to hua Intel.
Nga korero e pa ana · Haumarutanga Hua i Intel · Nga Tohutohu a te Pokapū Haumarutanga Hua Intel

Intel Corporation. Katoa nga mana. Ko Intel, ko te tohu Intel, me etahi atu tohu Intel he tohu hokohoko na Intel Corporation me ona apiti. Ka whakamanahia e Intel te mahinga o ana hua FPGA me nga hua semiconductor ki nga whakaritenga o naianei i runga i te raihana paerewa a Intel, engari ka whai mana ki te whakarereke i nga hua me nga ratonga i nga wa katoa kaore he panui. Karekau a Intel he kawenga, he taunahatanga ranei i puta mai i te tono, i te whakamahinga ranei o nga korero, hua, ratonga ranei e whakaahuatia ana i konei engari ko nga mea i tino whakaaehia a Intel. Ka tohutohuhia nga kaihoko a Intel ki te tiki i te putanga hou o nga whakaritenga taputapu i mua i te whakawhirinaki ki nga korero kua whakaputaina me i mua i te tuku ota mo nga hua, ratonga ranei. *Ko etahi atu ingoa me etahi atu tohu ka kiia he taonga na etahi atu.

ISO 9001:2015 Kua Rehitatia

1. Intel Agilex® 7 Haumarutanga Pūrere Nekeview 683823 | 2023.05.23

1.2. Nga waahanga haumaru kua whakamaheretia

Ko nga waahanga kua whakahuahia i tenei waahanga kua whakamaherehia mo te tukunga o te rorohiko Intel Quartus Prime Pro Edition.

Tuhipoka:

Ko nga korero o tenei waahanga he mea tuatahi.

1.2.1. Manatokonga Haumarutanga Haumarutanga Bitstream Whakaritenga Anō
Ko te whirihora ano (PR) te whakamanatanga haumarutanga awaawa ka awhina i te whakapumautanga atu e kore e taea e nga awa moka PR persona te uru atu, e pokanoa ranei ki etahi atu awa biti PR persona.

1.2.2. Whakamate Whaiaro a te Pūrere mo te Anti-T tinanaamper
Ko te patu-whaiaro o te taputapu ka mahi i te muru taputapu, i te whakautu kore ranei o te taputapu, me nga kaupapa eFuses hei aukati i te whirihora ano.

1.3. Tuhinga Haumarutanga Wātea

Ko te ripanga e whai ake nei e whakaraupapa ana i nga tuhinga e waatea ana mo nga ahuatanga haumarutanga o nga taputapu i runga i nga taputapu Intel FPGA me te Structured ASIC:

Ripanga 1.

Tuhinga Haumarutanga Pūrere Wātea

Ingoa Tuhinga
Tikanga Haumarutanga mo nga Intel FPGAs me nga ASIC Hangarau Aratohu Kaiwhakamahi

Te kaupapa
He tuhinga taumata-runga kei roto nga whakaahuatanga mo nga ahuatanga haumaru me nga hangarau i roto i nga Hua Whakataunga Whakatupato a Intel. Ko te hiahia ki te awhina i a koe ki te kowhiri i nga ahuatanga haumarutanga e tika ana hei whakatutuki i o whaainga haumarutanga.

ID Tuhinga 721596

Intel Stratix 10 Aratohu Kaiwhakamahi Haumarutanga Pūrere
Intel Agilex 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere

Mo nga kaiwhakamahi o nga taputapu Intel Stratix 10, kei roto i tenei aratohu nga tohutohu ki te whakamahi i te rorohiko Intel Quartus Prime Pro Edition ki te whakatinana i nga ahuatanga haumarutanga i tautuhia ma te whakamahi i te Aratohu Kaiwhakamahi Tikanga Haumarutanga.
Mo nga kaiwhakamahi o nga taputapu Intel Agilex 7, kei roto i tenei aratohu nga tohutohu ki te whakamahi i te rorohiko Intel Quartus Prime Pro Edition ki te whakatinana i nga ahuatanga haumarutanga i tautuhia ma te whakamahi i te Aratohu Kaiwhakamahi Tikanga Haumarutanga.

683642 683823

He Aratohu Kaiwhakamahi Haumarutanga Pūrere Intel eASIC N5X

Mo nga kaiwhakamahi o nga taputapu Intel eASIC N5X, kei roto i tenei aratohu nga tohutohu ki te whakamahi i te rorohiko Intel Quartus Prime Pro Edition hei whakatinana i nga ahuatanga haumarutanga i tautuhia ma te whakamahi i te Aratohu Kaiwhakamahi Tikanga Haumarutanga.

626836

Intel Agilex 7 me Intel eASIC N5X HPS Cryptographic Services Aratohu Kaiwhakamahi

Kei roto i tenei aratohu nga korero hei awhina i nga miihini rorohiko HPS ki te whakatinana me te whakamahi i nga whare pukapuka rorohiko HPS ki te uru atu ki nga ratonga cryptographic e whakaratohia ana e te SDM.

713026

AN-968 Black Key Provisioning Service Aratohu Timata Tere

Kei roto i tenei aratohu he huinga katoa o nga huarahi ki te whakarite i te ratonga Whakarato Pango Pango.

739071

Tauwāhi Intel Resource me
Pokapū Hoahoa
Intel.com
Intel.com
Intel Resource and Design Center
Intel Resource and Design Center
Intel Resource and Design Center

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 5

683823 | 2023.05.23 Tuku Urupare

Motuhēhēnga me te Whakamana

Hei whakaahei i nga ahuatanga whakamotuhēhēnga o tētahi taputapu Intel Agilex 7, ka timata koe ma te whakamahi i te rorohiko Intel Quartus Prime Pro Edition me nga taputapu whai hononga ki te hanga mekameka waitohu. Kei roto i te mekameka waitohu he matua matua, kotahi, neke atu ranei nga taviri hainatanga, me nga whakamanatanga e tika ana. Ka tono koe i te mekameka hainatanga ki to kaupapa Intel Quartus Prime Pro Edition me nga kaupapa whakahiato files. Whakamahia nga tohutohu i roto i te Whakarato Pūrere ki te whakarite i to matua matua ki nga taputapu Intel Agilex 7.
Nga korero e pa ana
Whakaritenga Pūrere kei te wharangi 25

2.1. Te Waihanga Waitohu Waitohu
Ka taea e koe te whakamahi i te taputapu quartus_sign, i te whakatinanatanga tohutoro agilex_sign.py ranei hei mahi i nga mahi mekameka waitohu. Ka whakaratohia e tenei tuhinga exampte whakamahi quartus_sign.
Hei whakamahi i te whakatinanatanga tohutoro, ka whakakapi koe i te waea ki te kaiwhakamaori Python kua whakauruhia ki te rorohiko Intel Quartus Prime me te waiho i te whiringa –family=agilex; he rite nga whiringa katoa. Mo te exampte, te whakahau quartus_sign i kitea i muri mai i tenei waahanga
quartus_sign –family=agilex –operation=make_root root_public.pem root.qky ka taea te huri ki te waea rite ki te whakatinanatanga tohutoro penei
pgm_py agilex_sign.py –operation=make_root root_public.pem root.qky

Kei roto i te rorohiko Intel Quartus Prime Pro Edition nga taputapu quartus_sign, pgm_py, me agilex_sign.py. Ka taea e koe te whakamahi i te taputapu anga whakahau Nios® II, ka tautuhi aunoa i nga taurangi taiao e tika ana kia uru atu ki nga taputapu.

A pee i enei tohutohu ki te kawe ake i te anga whakahau Nios II. 1. Kawea ake he anga whakahau Nios II.

Kōwhiringa Matapihi
Linux

Whakaahuatanga
I te tahua Tīmata, tohu ki Papatono Intel FPGA Nios II EDS ka paato i a Nios II Anga Whakahau.
I roto i te anga whakahau huri ki te /nios2eds ka whakahaere i te whakahau e whai ake nei:
./nios2_command_shell.sh

Ko te exampKo nga mea i tenei waahanga ka mau i te mekameka waitohu me te awaawa whirihoranga files kei roto i te whaiaronga mahi o naianei. Ki te whiriwhiri koe ki te whai i te examples where key files kei te pupuri i runga i te file pūnaha, era exampme mau ki te matua files ko

ISO 9001:2015 Kua Rehitatia

2. Motuhēhē me te Whakamana 683823 | 2023.05.23
kei roto i te whaiaronga mahi o naianei. Ka taea e koe te whiriwhiri ko wai nga raarangi hei whakamahi, me nga taputapu tautoko whanaunga file ara. Mena ka whiriwhiri koe ki te pupuri i te matua files i runga i te file punaha, me ata whakahaere e koe nga whakaaetanga uru ki era files.
E taunaki ana a Intel kia whakamahia he Kowae Haumaru Maamaa (HSM) e waatea ana ki te hokohoko ki te penapena i nga taviri tohu me te mahi i nga mahi tohu. Ko te taputapu quartus_sign me te whakatinanatanga tohutoro kei roto i te Paerewa Whakamaramatanga Kupu Tumatanui #11 (PKCS #11) Atanga Papatono Taupānga (API) hei taunekeneke ki te HSM i te wa e mahi ana i nga mahi mekameka waitohu. Kei roto i te whakatinanatanga tohutoro agilex_sign.py he tangohanga atanga me tetahi o muaampte atanga ki SoftHSM.
Ka taea e koe te whakamahi i enei exampte atanga ki te whakatinana i tetahi atanga ki to HSM. Tirohia te tuhinga mai i to kaihoko HSM mo etahi atu korero mo te whakatinana atanga me te whakahaere i to HSM.
Ko SoftHSM he whakatinanatanga rorohiko o te taputapu tangihanga whanui me te atanga PKCS #11 e waatea ana e te kaupapa OpenDNSSEC®. Ka kitea e koe etahi atu korero, tae atu ki nga tohutohu mo te tango, te hanga, me te whakauru i te OpenHSM, i te kaupapa OpenDNSSEC. Ko te exampKo enei i tenei waahanga ka whakamahi i te putanga SoftHSM 2.6.1. Ko te exampKo nga mea i tenei waahanga ka whakamahi i te taputapu pkcs11-taputapu mai i OpenSC hei mahi i etahi atu mahi PKCS #11 me te tohu SoftHSM. Ka kitea e koe etahi atu korero, tae atu ki nga tohutohu mo te tango, te hanga me te whakauru i te pkcs11tool mai i OpenSC.
Nga korero e pa ana
· Ko te kaupapa OpenDNSSEC Kaitohu rohe-a-kaupapa-a-kaupapa mo te whakaaunoa i te tukanga o te aroturuki i nga taviri DNSSEC.
· SoftHSM Ko nga korero e pa ana ki te whakatinanatanga o te toa cryptographic e waatea ana ma te atanga PKCS #11.
· OpenSC Ka whakaratohia he huinga whare pukapuka me nga taputapu ka taea te mahi me nga kaari atamai.
2.1.1. Te Waihanga Taurua Matua Motuhēhēnga i te Paetata File Pūnaha
Ka whakamahi koe i te taputapu quartus_sign ki te hanga takirua matua motuhēhēnga ki te rohe file te punaha ma te whakamahi i nga mahi taputapu make_private_pem me make_public_pem. I te tuatahi ka whakaputa koe i tetahi kii motuhake me te mahi make_private_pem. Ka whakapūtā koe i te ānau elliptic hei whakamahi, te kī tūmataiti filete ingoa, me te kore e taea te tiaki i te kī tūmataiti me te kīangahipa. E taunaki ana a Intel ki te whakamahi i te kurupae secp384r1 me te whai i nga tikanga pai rawa atu o te ahumahi ki te hanga i tetahi kīangahipa kaha, matapōkeretia i runga i nga kī tūmataiti katoa. files. E taunaki ana hoki a Intel ki te aukati i te file whakaaetanga pūnaha i runga i te kī tūmataiti .pem fileMa te rangatira anake e panui. Ka whiwhi koe i te kī tūmatanui mai i te kī tūmataiti mā te mahi make_public_pem. He pai ki te whakaingoa i te matua .pem files whakaahuatanga. Ka whakamahia e tenei tuhinga te huihuinga _ .pem i te ex e whai ake neiamples.
1. I roto i te anga whakahau Nios II, whakahaere i te whakahau e whai ake nei hei hanga i tetahi taviri tūmataiti. Ko te kī tūmataiti, e whakaatuhia ana i raro nei, ka whakamahia hei kī pakiaka i muri maiampka hangaia he mekameka waitohu. Ko nga taputapu Intel Agilex 7 e tautoko ana i nga taviri pakiaka maha, na ko koe

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 7

2. Motuhēhē me te Whakamana 683823 | 2023.05.23

tuaruatia tenei taahiraa ki te hanga i to maha o nga taviri pakiaka. ExampKo nga mea kei roto i tenei tuhinga e pa ana ki te matua matua tuatahi, ahakoa ka taea e koe te hanga i nga mekameka waitohu kia rite ki te ahua o tetahi ki tetahi.

Kōwhiringa Me te kīangahipa

Whakaahuatanga
quartus_sign –family=agilex –operation=make_private_pem –curve=secp384r1 root0_private.pem Whakauruhia te kīangahipa ina akiakihia kia pera.

Karekau he kīangahipa

quartus_sign –family=agilex –operation=make_private_pem –curve=secp384r1 –no_passphrase root0_private.pem

2. Whakahaerehia te whakahau e whai ake nei ki te hanga i tetahi kī tūmatanui mā te whakamahi i te kī tūmataiti i hangaia i te taahiraa o mua. Kare koe e hiahia ki te tiaki i te matatapu o te matua whanui.
quartus_sign –family=agilex –operation=make_public_pem root0_private.pem root0_public.pem
3. Whakahaerehia ano nga whakahau ki te hanga takirua matua hei tohu tohu hoahoa i roto i te mekameka waitohu.
quartus_sign –family=agilex –operation=make_private_pem –curve=secp384r1 design0_sign_private.pem

quartus_sign –family=agilex –operation=make_public_pem design0_sign_private.pem design0_sign_public.pem

2.1.2. Waihanga Taurua Matua Motuhēhēnga ki SoftHSM
Ko te SoftHSM exampKo nga korero i roto i tenei upoko he rite tonu. Ko etahi tawhā ka whakawhirinaki ki to whakaurunga SoftHSM me te arawhitinga tohu i roto i te SoftHSM.
Ko te taputapu quartus_sign kei runga i te puna PKCS #11 API mai i to HSM.
Ko te exampKo nga mea i tenei waahanga ka whakaaro kua whakauruhia te whare pukapuka SoftHSM ki tetahi o nga waahi e whai ake nei: · /usr/local/lib/softhsm2.so i runga i te Linux · C:SoftHSM2libsofthsm2.dll i runga i te putanga 32-bit o Windows · C:SoftHSM2libsofthsm2-x64 .dll i runga i te putanga 64-bit o Windows.
Whakaokirihia he tohu i roto i te SoftHSM ma te whakamahi i te taputapu softhsm2-util:
softhsm2-util –init-token –tapanga agilex-token –pin agilex-token-pin –so-pin agilex-so-pin –kore
Ko nga tawhā kōwhiringa, ina koa ko te tapanga tohu me te titi tohu he exampKa whakamahia puta noa i tenei upoko. E taunaki ana a Intel kia whai koe i nga tohutohu mai i to kaihoko HSM ki te hanga me te whakahaere i nga tohu me nga ki.
Ka hangaia e koe nga takirua matua motuhēhēnga mā te whakamahi i te taputapu pkcs11-taputapu hei taunekeneke me te tohu i SoftHSM. Engari i te tino korero ki te taviri tūmataiti me te kī tūmatanui .pem files i roto i te file pūnaha exampNa, ka tohu koe ki te takirua matua ma tana tapanga ka kowhiri aunoa te taputapu i te ki tika.

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 8

Tuku Urupare

2. Motuhēhē me te Whakamana 683823 | 2023.05.23

Whakahaerehia nga whakahau e whai ake nei hei hanga i tetahi takirua matua i whakamahia hei matua matua i muri maiamples me te takirua matua i whakamahia hei tohu tohu hoahoa i roto i te mekameka waitohu:
pkcs11-taputapu –module=/usr/local/lib/softhsm/libsofthsm2.so –tohu-tapanga agilex-token –takiuru –pin agilex-token-pin –keypairgen –mechanism ECDSA-KEY-PAIR-GEN –key-momo EC :secp384r1 –tohu-whakamahi – tapanga pakiaka0 –id 0
pkcs11-taputapu –module=/usr/local/lib/softhsm/libsofthsm2.so –tohu-tapanga agilex-token –takiuru –pin agilex-token-pin –keypairgen –mechanism ECDSA-KEY-PAIR-GEN –key-momo EC :secp384r1 –tohu-whakamahi –tohu hoahoa0_tohu –id 1

Tuhipoka:

Ko te kōwhiringa ID i tenei taahiraa me motuhake ki ia kī, engari ka whakamahia e te HSM anake. Ko tenei whiringa ID kaore i te hono ki te ID whakakore matua kua tohua ki te mekameka haina.

2.1.3. Te hanga i te urunga Root Chain Waitohu
Hurihia te kī tūmatanui pakiaka ki te urunga pakiaka mekameka waitohu, kua rongoa ki te rohe file pūnaha i roto i te hōputu matua Intel Quartus Prime (.qky). file, me te mahi make_root. Whakahokia tenei taahiraa mo ia matua pakiaka ka mahia e koe.
Whakahaerehia te whakahau e whai ake nei hei hanga i tetahi mekameka waitohu me te urunga pakiaka, ma te whakamahi i te matua matua matua mai i te file pūnaha:
quartus_sign –family=agilex –operation=make_root –key_type=owner root0_public.pem root0.qky
Whakahaerehia te whakahau e whai ake nei ki te hanga i tetahi mekameka waitohu me te urunga pakiaka, ma te whakamahi i te matua matua mai i te tohu SoftHSM kua whakapumautia i te waahanga o mua:
quartus_sign –family=agilex –operation=make_root –key_type=owner –module=softHSM –module_args=”–token_label=agilex-token –user_pin=agilex-token-pin –hsm_lib=/usr/local/lib/softhsm/libsofthsm2.so ” root0 root0.qky

2.1.4. Te Waihanga Waitohu Waitohu Whakauru Matua Tumatanui
Waihangatia he urunga matua whanui hou mo te mekameka waitohu me te mahi apiti_key. Ka whakapūtā koe i te mekameka waitohu o mua, te kī tūmataiti mo te urunga whakamutunga i te mekameka waitohu o mua, te kī tūmatanui taumata whai muri, nga whakaaetanga me te TT whakakore ka tautapahia e koe ki te taumata whai ake kī tūmatanui, me te mekameka waitohu hou file.
Kia mahara karekau te whare pukapuka softHSM i te waatea me te whakaurunga a Quartus, engari me whakauru motuhake. Mo etahi atu korero mo softHSM tirohia te Wāhanga Waihanga Waitohu i runga ake nei.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 9

2. Motuhēhē me te Whakamana 683823 | 2023.05.23
I runga i to whakamahi i nga taviri i runga i te file i roto i te HSM ranei, ka whakamahi koe i tetahi o nga mea e whai ake neiampKo nga whakahau ki te taapiri i te hoahoa0_sign matua whanui ki te mekameka waitohu i hangaia i te waahanga o mua:
quartus_sign –family=agilex –operation=append_key –previous_pem=root0_private.pem –previous_qky=root0.qky –permission=6 – whakakore=0 –input_pem=design0_sign_public.pem design0_sign_chain.qky
quartus_sign –family=agilex –operation=append_key –module=softHSM –module_args=”–token_label=agilex-token –user_pin=agilex-token-pin –hsm_lib=/usr/local/lib/softhsm/libsofthsm2.so” –previous_keyname= root0 –previous_qky=root0.qky –permission=6 –whakakore=0 –input_keyname=design0_sign design0_sign_chain.qky
Ka taea e koe te whakahoki ano i te mahi append_key kia rua ake nga wa mo te nui rawa o te toru nga urunga matua whanui i waenga i te urunga pakiaka me te urunga paraka pane i tetahi mekameka waitohu kotahi.
Ko te ex e whai ake neiampE whakaaro ana koe i hanga e koe tetahi atu taviri motuhēhēnga tūmatanui me te ōrite o ngā whakaaetanga me te ID whakakorenga kua tohua 1 e kiia nei ko design1_sign_public.pem, kei te apitihia tenei ki te mekameka waitohu mai i te o muaample:
quartus_sign –family=agilex –operation=append_key –previous_pem=design0_sign_private.pem –previous_qky=design0_sign_chain.qky –permission=6 – whakakore=1 –input_pem=design1_sign_public.pem design1_sign_chain.qky
quartus_sign –family=agilex –operation=append_key –module=softHSM –module_args=”–token_label=agilex-token –user_pin=agilex-token-pin –hsm_lib=/usr/local/lib/softhsm/libsofthsm2.so” –previous_keyname= design0_sign –previous_qky=design0_sign_chain.qky –permission=6 –whakakore=1 –input_keyname=design1_sign design1_sign_chain.qky
Kei roto i nga taputapu Intel Agilex 7 tetahi taapiri whakakore matua hei whakaahuru i te whakamahi o te ki ka huri i ia waa puta noa i te oranga o tetahi taputapu. Ka taea e koe te kowhiri i tenei porotiti whakakore matua ma te huri i te tohenga o te whiringa -whakakore ki te pts:pts_value.
2.2. Te hainatanga i te awa moka Whirihoranga
Ka tautokohia e nga taputapu Intel Agilex 7 nga porotiti Tau Putanga Haumarutanga (SVN), e taea ai e koe te whakakore i te whakamanatanga o tetahi mea me te kore e whakakore i te kii. Ka tautapa koe i te porotiti SVN me te uara porotiti SVN e tika ana i te hainatanga o tetahi mea, penei i te waahanga awaawa, firmware .zip file, tiwhikete kiato ranei. Ka tautapa koe i te porotiti SVN me te uara SVN ma te whakamahi i te whiringa -whakakore me te svn_counter:svn_value hei tohenga. Ko nga uara whaimana mo te svn_counter ko svnA, svnB, svnC, me svnD. Ko te svn_value he tauoti kei roto i te awhe [0,63].

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 10

Tuku Urupare

2. Motuhēhē me te Whakamana 683823 | 2023.05.23
2.2.1. Quartus Key File Taumahi
Ka tohua e koe he mekameka waitohu i roto i to kaupapa rorohiko Intel Quartus Prime kia taea ai te waahanga motuhēhēnga mo taua hoahoa. Mai te Taumahi tahua, tīpako Pūrere Pūrere me Kōwhiringa Pin Security Quartus Key File, ka tirotiro ki te mekameka waitohu .qky file i hanga e koe hei haina i tenei hoahoa.
Whakaatu 1. Whakahohehia te Tautuhinga Aromatawai Whirihoranga

Hei taapiri, ka taea e koe te taapiri i te korero taumahi e whai ake nei ki o Tautuhinga Intel Quartus Prime file (.qsf):
huinga_whakamahinga_ao -ingoa QKY_FILE hoahoa0_sign_chain.qky
Hei whakaputa i te .sof file mai i te hoahoa kua whakahiatohia i mua, kei roto tenei tautuhinga, mai i te tahua Tukatuka, tohua te Timata Timata Assembler. Ko te putanga hou .sof file kei roto ko nga taumahi kia taea ai te motuhēhēnga me te mekameka waitohu kua whakaratohia.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 11

2. Motuhēhē me te Whakamana 683823 | 2023.05.23
2.2.2. Waitohu-SDM Firmware
Ka whakamahi koe i te taputapu quartus_sign ki te tango, ki te haina, ki te whakauru i te SDM firmware .zip e tika ana file. Ko te firmware i haina tahi ka whakauruhia e te kaupapa file taputapu generator ina tahuri koe .sof file ki te whirihoranga bitstream .rbf file. Ka whakamahi koe i nga whakahau e whai ake nei hei hanga i tetahi mekameka waitohu hou me te haina i te firmware SDM.
1. Waihangahia he takirua matua hainatanga hou.
a. Waihangahia he takirua matua hainatanga hou ki te file pūnaha:
quartus_sign –family=agilex –operation=make_private_pem –curve=secp384r1 firmware1_private.pem
quartus_sign –family=agilex –operation=make_public_pem firmware1_private.pem firmware1_public.pem
b. Waihangahia he takirua matua hainatanga hou ki te HSM:
pkcs11-taputapu –module=/usr/local/lib/softhsm/libsofthsm2.so –tohu-tapanga agilex-token –takiuru –pin agilex-token-pin –keypairgen -mechanism ECDSA-KEY-PAIR-GEN –key-momo EC :secp384r1 –tohu-whakamahinga –tapanga firmware1 –id 1
2. Waihangahia he mekameka waitohu hou kei roto te taviri whanui hou:
quartus_sign –family=agilex –operation=append_key –previous_pem=root0_private.pem –previous_qky=root0.qky –permission=0x1 – whakakore=1 –input_pem=firmware1_public.pem firmware1_sign_chain.qky
quartus_sign –family=agilex –operation=append_key –module=softHSM –module_args=”–token_label=agilex-token –user_pin=agilex-token-pin –hsm_lib=/usr/local/lib/softhsm/libsofthsm2.so” –previous_keyname= root0 –previous_qky=root0.qky –permission=1 –whakakore=1 –input_keyname=firmware1 firmware1_sign_chain.qky
3. Tāruahia te firmware .zip file mai i to raarangi whakaurunga rorohiko Intel Quartus Prime Pro Edition ( /devices/programmer/firmware/ agilex.zip) ki te whaiaronga mahi o naianei.
quartus_sign –family=agilex –get_firmware=.
4. Waitohu te firmware .zip file. Ka wetewete aunoa te taputapu i te .zip file ka haina takitahi i te firmware .cmf katoa files, ka hanga ano i te .zip file mo te whakamahi i nga taputapu i nga waahanga e whai ake nei:
quartus_sign –family=agilex –operation=sign –qky=firmware1_sign_chain.qky –cancel=svnA:0 –pem=firmware1_private.pem agilex.zip signed_agilex.zip
quartus_sign –family=agilex –operation=sign –module=softHSM –module_args=”–token_label=agilex-token –user_pin=agilex-token-pin –hsm_lib=/usr/local/lib/softhsm/libsofthsm2.so”

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 12

Tuku Urupare

2. Motuhēhē me te Whakamana 683823 | 2023.05.23

–keyname=firmware1 – whakakore=svnA:0 –qky=firmware1_sign_chain.qky agilex.zip signed_agilex.zip

2.2.3. Waitohu Whirihoranga Bitstream Ma te whakamahi i te quartus_sign Command
Hei haina i te awaawa whirihoranga ma te whakamahi i te tono quartus_sign, ka huri tuatahi koe i te .sof file ki te taurua mata kore i hainatia file (.rbf) hōputu. Ka taea pea e koe te tohu i te firmware i haina tahi ma te whakamahi i te whiringa fw_source i te wa o te huringa.
Ka taea e koe te whakaputa i te awa moka mata kore haina ki te whakatakotoranga .rbf ma te whakamahi i te whakahau e whai ake nei:
quartus_pfg c o fw_source=signed_agilex.zip -o sign_later=ON design.sof unsigned_bitstream.rbf
Whakahaerehia tetahi o nga whakahau e whai ake nei hei haina i te awaawa ma te whakamahi i te taputapu quartus_sign i runga i te waahi o au ki:
quartus_sign –family=agilex –operation=sign –qky=design0_sign_chain.qky –pem=design0_sign_private.pem –cancel=svnA:0 unsigned_bitstream.rbf signed_bitstream.rbf
quartus_sign –family=agilex –operation=sign –module=softHSM –module_args=”–token_label=agilex-token –user_pin=agilex-token-pin –hsm_lib=/usr/local/lib/softhsm/libsofthsm2.so” –keyname= design0_sign –qky=design0_sign_chain.qky –cancel=svnA:0 unsigned_bitstream.rbf signed_bitstream.rbf
Ka taea e koe te huri i te .rbf kua hainatia files ki etahi atu awaawa whirihoranga file whakatakotoranga.
Mo te examptena, mena kei te whakamahi koe i te Jam* Paerewa Whakamatau me te Reo Papatonotanga (STAPL) ki te hotaka i tetahi awa moka ki runga i a JTAG, ka whakamahi koe i te whakahau e whai ake nei hei huri i te .rbf file ki te whakatakotoranga .jam e hiahiatia ana e te Kaitakaro Jam STAPL:
quartus_pfg -c signed_bitstream.rbf signed_bitstream.jam

2.2.4. Tautoko Mana-Maha Whirihoranga Anō Wahi

Ka tautokohia e nga taputapu Intel Agilex 7 te whakamotuhēhēnga mana-maha te whirihora hou, kei reira te rangatira o te taputapu ka hanga me te haina i te awaawa pateko, a ka hangaia e tetahi rangatira PR motuhake me te haina i nga awa moka PR persona. Ka whakatinanahia e nga taputapu Intel Agilex 7 te tautoko mana-maha ma te tuku i nga i'ai matua motuhēhēnga tuatahi ki te taputapu, te kaipupuri awaawa pateko ranei, me te tautapa i te mokamoka matua motuhēhēnga whakamutunga ki te rangatira whirihoranga ano tangata bitstream.
Mēnā ka whakahohea te āhuatanga motuhēhēnga, katahi ka hainatia ngā whakaahua PR persona katoa, tae atu ki ngā whakaahua tangata PR kohanga. Ka hainatia pea e te rangatira o te taputapu, e te rangatira PR ranei; heoi, me haina nga awa moka rohe pateko e te rangatira o te taputapu.

Tuhipoka:

Ko te Whakamunatanga Waahanga Ahuriri pateko me te whakamunatanga awa moka tangata ina whakahohea te tautoko mana-maha ka whakamaheretia i roto i te tukunga a meake nei.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 13

2. Motuhēhē me te Whakamana 683823 | 2023.05.23

Whakaahua 2.

Ko te whakatinana i etahi waahanga tautoko mana-maha e hiahia ana kia maha nga waahanga:
1. Ko te taputapu, ko te kaipupuri awaawa pateko ranei ka whakaputa i tetahi, neke atu ranei o nga taviri pakiaka motuhēhēnga e whakaahuatia ana i roto i te Waihanga Taurua Kī Motuhēhēnga i SoftHSM i te wharangi 8, kei reira te kōwhiringa –key_type he rangatira uara.
2. Ka mahia e te rangatira whirihora ano te awa bitstream he taviri pakiaka motuhēhēnga engari ka huri te uara kōwhiringa –key_type ki secondary_owner.
3. Ko nga rangatira hoahoatanga whirihora hou me te awaawa pateko e whakarite kia whakahohea te pouakataki tautoko Whakahohe Mana-maha ki te ripa Haumarutanga Pūrere Taumahi me nga Kōwhiringa Pin.
Intel Quartus Prime Whakahohe Tautuhinga Kōwhiringa Mana-maha

4. Ka hangaia e nga rangatira hoahoa whirihoranga hou me etahi waahanga nga mekameka waitohu i runga i o raatau ki o raatau pakiaka pera i te whakaahuatanga i te Waihanga Waitohu i te wharangi 6.
5. Ka huri nga rangatira hoahoa whirihoranga hou me te awaawa pateko i o raatau hoahoa ki te whakatakotoranga .rbf files ka haina te .rbf files.
6. Ko te taputapu, ko te kaipupuri awaawa pateko ranei ka whakaputa me te haina i tetahi tiwhikete whakaaheitanga mo te kaupapa matua whanui PR.
quartus_pfg –ccert o ccert_type=PR_PUBKEY_PROG_AUTH o owner_qky_file=”root0.qky;root1.qky” unsigned_pr_pubkey_prog.ccert
quartus_sign –family=agilex –operation=sign –qky=design0_sign_chain.qky –pem=design0_sign_private.pem –cancel=svnA:0 unsigned_pr_pubkey_prog.ccert signed_pr_pubkey_prog.ccert
quartus_sign –family=agilex –operation=sign –module=softHSM –module_args=”–token_label=s10-tohu –user_pin=s10-token-pin –hsm_lib=/usr/local/lib/softhsm/libsofthsm2.so” –keyname= design0_sign –qky=design0_sign_chain.qky –cancel=svnA:0 unsigned_pr_pubkey_prog.ccert signed_pr_pubkey_prog.ccert

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 14

Tuku Urupare

2. Motuhēhē me te Whakamana 683823 | 2023.05.23

7. Ka tukuna e te taputapu, te kaipupuri awaawa pateko ranei o ratou hashes matua motuhēhēnga ki te taputapu, katahi ka whakarite i te tiwhikete whakaaheitanga kaupapa matua matua PR, ka mutu, ka tukuna he waahanga o te whirihora ano i te matua o te rangatira o te awaawa ki te taputapu. Ko te wahanga Whakarato Pūrere e whakaatu ana i tenei tukanga tuku.
8. Kua whirihorahia te taputapu Intel Agilex 7 me te rohe pateko .rbf file.
9. Ko te taputapu Intel Agilex 7 he mea whirihora ano me te hoahoa persona .rbf file.
Nga korero e pa ana
· Te Waihanga Waitohu i te wharangi 6
· Waihanga Taurua Matua Motuhēhēnga ki SoftHSM i te wharangi 8
· Whakaritenga Pūrere kei te wharangi 25

2.2.5. Manatokonga Whirihoranga Waitohu Waitohu Bitstream
I muri i to waihanga i nga mekameka waitohu me nga awa moka kua hainatia, ka taea e koe te manatoko he tika te whirihora e te awa moka kua hainatia i tetahi taputapu kua hotaka me te kii pakiaka. Ka whakamahi tuatahi koe i te mahi fuse_info o te tono quartus_sign ki te tā i te hash o te matua matua matua ki tetahi kuputuhi file:
quartus_sign –family=agilex –operation=fuse_info root0.qky hash_fuse.txt

Ka whakamahi koe i te whiringa taki_integrity o te tono quartus_pfg ki te tirotiro i te mekameka waitohu ki ia wahanga o te awa biti kua hainatia ki te whakatakotoranga .rbf. Ko te kōwhiringa taki_integrity ka tā i ngā pārongo e whai ake nei:
· Te tūnga o te arowhai tapatahi o te awa bitstream
· Ko nga korero o ia urunga ki ia mekameka hainatanga e piri ana ki ia waahanga o te awaawa .rbf file,
· Te uara whaanui e tumanakohia ana mo te hash o te matua matua matua mo ia mekameka waitohu.
Ko te uara mai i te putanga fuse_info me taurite ki nga rarangi Fuse i te putanga taki_integrity.
quartus_pfg –check_integrity signed_bitstream.rbf

Anei tetahi o muaampte putanga whakahau check_integrity:

Mōhiohio: Whakahau: quartus_pfg –check_integrity signed_bitstream.rbf Tūnga tapatahi: ĀE

Wāhanga

Momo: CMF

Kaitohu Waitohu…

Waitohu mekameka #0 (tāurunga: -1, whiti: 96)

Whakauru #0

Fuse: 34FD3B5F 7829001F DE2A24C7 3A7EAE29 C7786DB1 D6D5BC3C 52741C79

72978B22 0731B082 6F596899 40F32048 AD766A24

Waihanga kī…

Anau: secp384r1

: 29C39C3064AE594A36DAA85602D6AF0B278CBB0B207C4D97CFB6967961E5F0ECA

456FF53F5DBB3A69E48A042C62AB6B0

: 3E81D40CBBBEAC13601247A9D53F4A831308A24CA0BDFFA40351EE76438C7B5D2

2826F7E94A169023AFAE1D1DF4A31C2

Waihanga kī…

Anau: secp384r1

: 29C39C3064AE594A36DAA85602D6AF0B278CBB0B207C4D97CFB6967961E5F0ECA

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 15

2. Motuhēhē me te Whakamana 683823 | 2023.05.23

456FF53F5DBB3A69E48A042C62AB6B0

: 3E81D40CBBBEAC13601247A9D53F4A831308A24CA0BDFFA40351EE76438C7B5D2

2826F7E94A169023AFAE1D1DF4A31C2

Whakauru #1

Waihanga kī…

Anau: secp384r1

: 015290C556F1533E5631322953E2F9E91258472F43EC954E05D6A4B63D611E04B

C120C7E7A744C357346B424D52100A9

: 68696DEAC4773FF3D5A16A4261975424AAB4248196CF5142858E016242FB82BC5

08A80F3FE7F156DEF0AE5FD95BDFE05

Whakauru #2 Whakaaetanga mekameka matua: SIGN_CODE Ka taea te whakakore i te mekameka matua ma te ID: 3 Waitohu mekameka #1 (nga whakaurunga: -1, whakawehe: 648)

Whakauru #0

Fuse: FA6528BE 9281F2DB B787E805 6BF6EE0E 28983C56 D568B141 8EEE4BF6

DAC2D422 0A3A0F27 81EFC6CD 67E973BF AC286EAE

Waihanga kī…

Anau: secp384r1

: 47A453474A8D886AB058615EB1AB38A75BAC9F0C46E564CB5B5DCC1328244E765

0411C4592FAFFC71DE36A105B054781

: 6087D3B4A5C8646B4DAC6B5C863CD0E705BD0C9D2C141DE4DE7BDDEB85C0410D8

6B7312EEE8241189474262629501FCD

Waihanga kī…

Anau: secp384r1

: 47A453474A8D886AB058615EB1AB38A75BAC9F0C46E564CB5B5DCC1328244E765

0411C4592FAFFC71DE36A105B054781

: 6087D3B4A5C8646B4DAC6B5C863CD0E705BD0C9D2C141DE4DE7BDDEB85C0410D8

6B7312EEE8241189474262629501FCD

Whakauru #1

Waihanga kī…

Anau: secp384r1

: 1E8FBEDC486C2F3161AFEB028D0C4B426258293058CD41358A164C1B1D60E5C1D

74D982BC20A4772ABCD0A1848E9DC96

: 768F1BF95B37A3CC2FFCEEB071DD456D14B84F1B9BFF780FC5A72A0D3BE5EB51D

0DA7C6B53D83CF8A775A8340BD5A5DB

Whakauru #2

Waihanga kī…

Anau: secp384r1

: 13986DDECAB697A2EB26B8EBD25095A8CC2B1A0AB0C766D029CDF2AFE21BE3432

76896E771A9C6CA5A2D3C08CF4CB83C

: 0A1384E9DD209238FF110D867B557414955354EE6681D553509A507A78CFC05A1

49F91CABA72F6A3A1C2D1990CDAEA3D

Whakauru #3 Whakaaetanga mekameka matua: SIGN_CODE Ka taea te whakakore i te mekameka matua ma te ID: 15 Waitohu mekameka #2 (whakauru: -1, offset: 0) Waitohu mekameka #3 (whakauru: -1, offset: 0) Waitohu mekameka #4 (whakauru: -1, whakawhikete: 0) Waitohu mekameka #5 (tāurunga: -1, offset: 0) Waitohu mekameka #6 (tāurunga: -1, offset: 0) Waitohu mekameka #7 (tāurunga: -1, offset: 0)

Momo Wāhanga: Kaitohu Waitohu IO … Waitohu mekameka #0 (tāurunga: -1, whiti: 96)

Whakauru #0

Fuse: FA6528BE 9281F2DB B787E805 6BF6EE0E 28983C56 D568B141 8EEE4BF6

DAC2D422 0A3A0F27 81EFC6CD 67E973BF AC286EAE

Waihanga kī…

Anau: secp384r1

: 47A453474A8D886AB058615EB1AB38A75BAC9F0C46E564CB5B5DCC1328244E765

0411C4592FAFFC71DE36A105B054781

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 16

Tuku Urupare

2. Motuhēhē me te Whakamana 683823 | 2023.05.23

: 6087D3B4A5C8646B4DAC6B5C863CD0E705BD0C9D2C141DE4DE7BDDEB85C0410D8

6B7312EEE8241189474262629501FCD

Waihanga kī…

Anau: secp384r1

: 47A453474A8D886AB058615EB1AB38A75BAC9F0C46E564CB5B5DCC1328244E765

0411C4592FAFFC71DE36A105B054781

: 6087D3B4A5C8646B4DAC6B5C863CD0E705BD0C9D2C141DE4DE7BDDEB85C0410D8

6B7312EEE8241189474262629501FCD

Whakauru #1

Waihanga kī…

Anau: secp384r1

: 646B51F668D8CC365D72B89BA8082FDE79B00CDB750DA0C984DC5891CDF57BD21

44758CA747B1A8315024A8247F12E51

: 53513118E25E16151FD55D7ECDE8293AF6C98A74D52E0DA2527948A64FABDFE7C

F4EA8B8E229218D38A869EE15476750

Whakauru #2

Waihanga kī…

Anau: secp384r1

: 13986DDECAB697A2EB26B8EBD25095A8CC2B1A0AB0C766D029CDF2AFE21BE3432

76896E771A9C6CA5A2D3C08CF4CB83C

: 0A1384E9DD209238FF110D867B557414955354EE6681D553509A507A78CFC05A1

49F91CABA72F6A3A1C2D1990CDAEA3D

Whakauru #3 Whakaaetanga mekameka matua: SIGN_CORE Ka taea te whakakore i te mekameka matua ma te ID: 15 Waitohu mekameka #1 (whakauru: -1, offset: 0) Waitohu mekameka #2 (whakauru: -1, offset: 0) Waitohu mekameka #3 (whakauru: -1, Offset: 0) Waitohu mekameka #4 (tāurunga: -1, offset: 0) Waitohu mekameka #5 (tāurunga: -1, offset: 0) Waitohu mekameka #6 (tāurunga: -1, offset: 0) Waitohu mekameka #7 (tāurunga: -1, whiti: 0)

Wāhanga

Momo: HPS

Kaitohu Waitohu…

Waitohu mekameka #0 (tāurunga: -1, whiti: 96)

Whakauru #0

Fuse: FA6528BE 9281F2DB B787E805 6BF6EE0E 28983C56 D568B141 8EEE4BF6

DAC2D422 0A3A0F27 81EFC6CD 67E973BF AC286EAE

Waihanga kī…

Anau: secp384r1

: 47A453474A8D886AB058615EB1AB38A75BAC9F0C46E564CB5B5DCC1328244E765

0411C4592FAFFC71DE36A105B054781

: 6087D3B4A5C8646B4DAC6B5C863CD0E705BD0C9D2C141DE4DE7BDDEB85C0410D8

6B7312EEE8241189474262629501FCD

Waihanga kī…

Anau: secp384r1

: 47A453474A8D886AB058615EB1AB38A75BAC9F0C46E564CB5B5DCC1328244E765

0411C4592FAFFC71DE36A105B054781

: 6087D3B4A5C8646B4DAC6B5C863CD0E705BD0C9D2C141DE4DE7BDDEB85C0410D8

6B7312EEE8241189474262629501FCD

Whakauru #1

Waihanga kī…

Anau: secp384r1

: FAF423E08FB08D09F926AB66705EB1843C7C82A4391D3049A35E0C5F17ACB1A30

09CE3F486200940E81D02E2F385D150

: 397C0DA2F8DD6447C52048CD0FF7D5CCA7F169C711367E9B81E1E6C1E8CD9134E

5AC33EE6D388B1A895AC07B86155E9D

Whakauru #2

Waihanga kī…

Anau: secp384r1

: 13986DDECAB697A2EB26B8EBD25095A8CC2B1A0AB0C766D029CDF2AFE21BE3432

76896E771A9C6CA5A2D3C08CF4CB83C

: 0A1384E9DD209238FF110D867B557414955354EE6681D553509A507A78CFC05A1

49F91CABA72F6A3A1C2D1990CDAEA3D

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 17

2. Motuhēhē me te Whakamana 683823 | 2023.05.23

Whakauru #3 Whakaaetanga mekameka matua: SIGN_HPS Keychain ka taea te whakakore ma te ID: 15 Waitohu mekameka #1 (whakauru: -1, offset: 0) Waitohu mekameka #2 (whakauru: -1, offset: 0) Waitohu mekameka #3 (urunga: -1, Offset: 0) Waitohu mekameka #4 (tāurunga: -1, offset: 0) Waitohu mekameka #5 (tāurunga: -1, offset: 0) Waitohu mekameka #6 (tāurunga: -1, offset: 0) Waitohu mekameka #7 (tāurunga: -1, whiti: 0)

Momo Wāhanga: Kaitohu Waitohu CORE … Waitohu mekameka #0 (nga urunga: -1, whakawehe: 96)

Whakauru #0

Fuse: FA6528BE 9281F2DB B787E805 6BF6EE0E 28983C56 D568B141 8EEE4BF6

DAC2D422 0A3A0F27 81EFC6CD 67E973BF AC286EAE

Waihanga kī…

Anau: secp384r1

: 47A453474A8D886AB058615EB1AB38A75BAC9F0C46E564CB5B5DCC1328244E765

0411C4592FAFFC71DE36A105B054781

: 6087D3B4A5C8646B4DAC6B5C863CD0E705BD0C9D2C141DE4DE7BDDEB85C0410D8

6B7312EEE8241189474262629501FCD

Waihanga kī…

Anau: secp384r1

: 47A453474A8D886AB058615EB1AB38A75BAC9F0C46E564CB5B5DCC1328244E765

0411C4592FAFFC71DE36A105B054781

: 6087D3B4A5C8646B4DAC6B5C863CD0E705BD0C9D2C141DE4DE7BDDEB85C0410D8

6B7312EEE8241189474262629501FCD

Whakauru #1

Waihanga kī…

Anau: secp384r1

: 646B51F668D8CC365D72B89BA8082FDE79B00CDB750DA0C984DC5891CDF57BD21

44758CA747B1A8315024A8247F12E51

: 53513118E25E16151FD55D7ECDE8293AF6C98A74D52E0DA2527948A64FABDFE7C

F4EA8B8E229218D38A869EE15476750

Whakauru #2

Waihanga kī…

Anau: secp384r1

: 13986DDECAB697A2EB26B8EBD25095A8CC2B1A0AB0C766D029CDF2AFE21BE3432

76896E771A9C6CA5A2D3C08CF4CB83C

: 0A1384E9DD209238FF110D867B557414955354EE6681D553509A507A78CFC05A1

49F91CABA72F6A3A1C2D1990CDAEA3D

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 18

Tuku Urupare

683823 | 2023.05.23 Tuku Urupare

Whakamunatanga AES Bitstream

Ko te Whakamunatanga Aromatawai Paerewa Arā Atu Anō (AES) he āhuatanga ka taea e te kaipupuri taputapu te tiaki i te muna o te taonga hinengaro i roto i te awa moka whirihoranga.
Hei awhina i te whakamarumaru i te muna o nga ki, ka whakamahia e te whakamunatanga awaawa whirihoranga he mekameka o nga taviri AES. Ka whakamahia enei taviri ki te whakamuna i nga raraunga rangatira ki roto i te awa moka whirihoranga, kei reira te matua takawaenga tuatahi ka whakamunatia ki te matua AES.

3.1. Te hanga i te AES Root Key

Ka taea e koe te whakamahi i te taputapu quartus_encrypt, i te whakatinanatanga tohutoro stratix10_encrypt.py ranei hei hanga i tetahi matua AES ki te whakatakotoranga matua whakamunatanga rorohiko Intel Quartus Prime (.qek) file.

Tuhipoka:

Ko te stratix10_encrypt.py file ka whakamahia mo Intel Stratix® 10, me nga taputapu Intel Agilex 7.

Ka taea e koe te tautuhi i te taviri turanga e whakamahia ana ki te tango i te kii pakiaka AES me te kii takenga matua, te uara mo te matua matua AES, te maha o nga taviri takawaenga, me te nui o te whakamahi mo ia matua takawaenga.

Me whakapūtā koe te whānau pūrere, putanga .qek file tauwāhi, me te kīangahipa ka ākina.
Whakahaerehia te whakahau e whai ake nei hei whakaputa i te matua AES ma te whakamahi i nga raraunga matapōkere mo te matua matua me nga uara taunoa mo te maha o nga taviri takawaenga me te whakamahi matua nui.
Hei whakamahi i te whakatinanatanga tohutoro, ka whakakapi koe i te waea ki te kaiwhakamaori Python kua whakauruhia ki te rorohiko Intel Quartus Prime me te waiho i te whiringa –family=agilex; he rite nga whiringa katoa. Mo te exampKo te whakahau quartus_encrypt i kitea i muri mai i te waahanga

quartus_encrypt –family=agilex –operation=MAKE_AES_KEY aes_root.qek

ka taea te huri ki te waea rite ki te whakatinanatanga tohutoro penei pgm_py stratix10_encrypt.py –operation=MAKE_AES_KEY aes_root.qek

3.2. Tautuhinga Whakamunatanga Quartus
Kia taea ai te whakamunatanga awa moka mo tetahi hoahoa, me tohu koe i nga whiringa e tika ana ma te whakamahi i te Paewhiri Pūrere Taumahi me te Paewhiri Haumarutanga Kōwhiringa Pin. Ka tohua e koe te pouakataki Whakahohenga whakamunatanga awaawa whirihoranga, me te waahi rokiroki matua Whakamunatanga e hiahiatia ana mai i te tahua takaiho.

ISO 9001:2015 Kua Rehitatia

Whakaatu 3. Tautuhinga Whakamunatanga Intel Quartus Prime

3. Whakamunatanga AES Bitstream 683823 | 2023.05.23

Hei taapiri, ka taea e koe te taapiri i te korero taumahi e whai ake nei ki o tautuhinga Intel Quartus Prime file .qsf:
huinga_taumahi_ao -ingoa ENCRYPT_PROGRAMMING_BITSTREAM kei runga i te huinga_toha_ao -ingoa PROGRAMMING_BITSTREAM_ENCRYPTION_KEY_SELECT eFuses
Mena kei te pirangi koe ki te whakaahei i etahi atu whakamaaramatanga ki nga vectors whakaeke hongere-taha, ka taea e koe te whakaahei i te Whakamunatanga whakahōutanga takaiho me te Whakahohe pouakataki hakihaki.

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 20

Tuku Urupare

3. Whakamunatanga AES Bitstream 683823 | 2023.05.23

Ko nga huringa e rite ana ki te .qsf ko:
huinga_taumahi_ao -ingoa PROGRAMMING_BITSTREAM_ENCRYPTION_CNOC_SCRAMBLING i te huinga_taumahi_ao -ingoa PROGRAMMING_BITSTREAM_ENCRYPTION_UPDATE_RATIO 31

3.3. Whakamuna i te awa moka Whirihoranga
Ka whakamuna koe i te awa moka whirihoranga i mua i te hainatanga i te awa moka. Ko te Intel Quartus Prime Programming File Ka taea e te taputapu Kaihanga te whakamuna me te haina i tetahi awa moka whirihoranga ma te whakamahi i te atanga kaiwhakamahi whakairoiro, raina whakahau ranei.
Ka taea e koe te hanga i tetahi awa moka kua whakamunatia hei whakamahi me nga taputapu quartus_encrypt me te quartus_sign, he rite ranei ki te whakatinana tohutoro.

3.3.1. Whirihoranga Whakamunatanga awaawa ma te whakamahi i te Papatonotanga File Atanga Whakairoiro Kaihanga
Ka taea e koe te whakamahi i te Papatonotanga File Kaihanga hei whakamuna me te haina i te ahua rangatira.

Whakaahua 4.

1. I runga i te Intel Quartus Prime File tahua tīpako Papatonotanga File Kaihanga. 2. I runga i te Putanga Files ripa, whakapūtā te putanga file momo mo to whirihoranga
kaupapa.
Putanga File Whakatakotoranga

Kaupapa whirihoranga Putanga file ripa
Putanga file momo

3. I runga i te Whakauru Files ripa, pāwhiri Tāpiri Bitstream ka tirotiro ki tou .sof. 4. Hei tautuhi i nga whiringa whakamunatanga me te motuhēhēnga tohua te .sof ka paato
Āhuatanga. a. Whakahohehia te taputapu hainatanga. b. Mo te Kī Tūmataiti file tīpakohia tō kī hainatanga tūmataiti .pem file. c. Whakakā Whakamunatanga whakamunatanga.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 21

3. Whakamunatanga AES Bitstream 683823 | 2023.05.23

Whakaahua 5.

d. Mo te Kī Whakamuna file, tohua to AES .qek file. Tāuru (.sof) File Ngā Āhuatanga mō te Motuhēhēnga me te Whakamuna

Whakahohe motuhēhēnga Tauwhāitihia te pakiaka tūmataiti .pem
Whakahohea te whakamunatanga Tauwhāitihia te kī whakamunatanga
5. Hei whakaputa i te awa moka kua hainatia me te whakamunatia, i runga i te Whakauru Files ripa, pāwhiri Hanga. Ka puta nga pouaka korero Kupuhipa hei whakauru i to kupuhipa mo to matua AES .qek file me te haina i te taviri tūmataiti .pem file. Te hōtaka file ka hangaia e te kaihanga te whakaputanga whakamunatia me te hainatanga_file.rbf.
3.3.2. Whirihoranga Whakamunatanga awaawa ma te whakamahi i te Papatonotanga File Atanga Raina Whakahau Kaihanga
Hangaia he awa moka whirihoranga kua whakamunatia me te hainatia ki te whakatakotoranga .rbf me te atanga raina whakahau quartus_pfg:
quartus_pfg -c encryption_enabled.sof top.rbf -o finalize_encryption=ON -o qek_file=aes_root.qek -o te hainatanga=ON -o pem_file=design0_sign_private.pem
Ka taea e koe te huri i te awa moka whirihoranga kua whakamunahia me te hainatanga ki te whakatakotoranga .rbf ki etahi atu awaawa whirihoranga file whakatakotoranga.
3.3.3. Waahanga Whakamuna Whirihoranga Waihanga Moka Whakaputa Ma te Atanga Raina Whakahau
Ka taea e koe te whakaputa i tetahi papatono kua whakamunatia file ki te whakaoti whakamunatanga me te haina i te ahua i muri mai. Hangaia te papatono whakamunatia wahanga file i te whakatakotoranga .rbf me te atanga raina tono tequartus_pfg: quartus_pfg -c -o finalize_encryption_later=ON -o sign_later=ON top.sof top.rbf

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 22

Tuku Urupare

3. Whakamunatanga AES Bitstream 683823 | 2023.05.23
Ka whakamahi koe i te taputapu raina whakahau quartus_encrypt hei whakaoti i te whakamunatanga awaawa:
quartus_encrypt –family=agilex –operation=ENCRYPT –key=aes_root.qek top.rbf encrypted_top.rbf
Ka whakamahi koe i te taputapu raina whakahau quartus_sign ki te haina i te awaawa whirihoranga whakamunatia:
quartus_sign –family=agilex –operation=SIGN –qky=design0_sign_chain.qky –pem=design0_sign_private.pem –cancel=svnA:0 encrypted_top.rbf signed_encrypted_top.rbf
quartus_sign –family=agilex –operation=sign –module=softHSM –module_args=”–token_label=agilex-token –user_pin=agilex-token-pin –hsm_lib=/usr/local/lib/softhsm/libsofthsm2.so” –keyname= design0_sign –qky=design0_sign_chain.qky –cancel=svnA:0 encrypted_top.rbf signed_encrypted_top.rbf
3.3.4. Whakamunatanga Aromatawai Anō Wahi
Ka taea e koe te whakamunatanga awa moka ki etahi hoahoa Intel Agilex 7 FPGA e whakamahi ana i te whirihora ano.
Ko nga hoahoa whirihora ano wahanga e whakamahi ana i te Hierarchical Partial Reconfiguration (HPR), ranei Static Update Partial Reconfiguration (SUPR) kaore e tautoko i te whakamunatanga awaawa. Mena he maha nga rohe PR kei roto i to hoahoa, me whakamuna nga tangata katoa.
Kia taea ai te whakamunatanga awa moka te whirihora ano, me whai i te tikanga ano i roto i nga whakarereketanga hoahoa katoa. 1. I runga i te Intel Quartus Prime File tahua, tīpako Pūrere Pūrere Taumahi
me te Haumarutanga Kōwhiringa Pin. 2. Tīpakohia te wāhi rokiroki kī whakamunatanga e hiahiatia ana.
Whakaahua 6. Whakaritenga Whakamunatanga Whakamunatanga Whakamunatanga Bitstream

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 23

3. Whakamunatanga AES Bitstream 683823 | 2023.05.23
Hei taapiri, ka taea e koe te taapiri i te korero taumahi e whai ake nei ki nga tautuhinga Quartus Prime file .qsf:
huinga_taumahi_ao -ingoa –ENABLE_PARTIAL_RECONFIGURATION_BITSTREAM_ENCRYPTION on
I muri i to whakahiato i to hoahoa turanga me nga whakahoutanga, ka hangaia e te rorohiko a.soffile me tetahi, neke atu ranei.pmsffiles, e tohu ana i nga tangata. 3. Waihangahia he kaupapa whakamunatia me te hainatanga files from.sof and.pmsf fileHe rite tonu te ahua ki nga hoahoa me te kore e taea te whirihora ano. 4. Hurihia te persona.pmsf kua whakahiato file ki tetahi wahanga whakamunatia.rbf file:
quartus_pfg -c -o finalize_encryption_later=ON -o sign_later=ON encryption_enabled_persona1.pmsf persona1.rbf
5. Whakamutua te whakamunatanga awaawa ma te whakamahi i te taputapu raina whakahau quartus_encrypt:
quartus_encrypt –family=agilex –operation=ENCRYPT –key=aes_root.qek persona1.rbf encrypted_persona1.rbf
6. Waitohu te awa bitstream whirihoranga whakamunatia ma te whakamahi i te taputapu raina whakahau quartus_sign:
quartus_sign –family=agilex –operation=SIGN –qky=design0_sign_chain.qky –pem=design0_sign_private.pem encrypted_persona1.rbf signed_encrypted_persona1.rbf
quartus_sign –family=agilex –operation=SIGN –module=softHSM –module_args=”–token_label=agilex-token –user_pin=agilex-token-pin –hsm_lib=/usr/local/lib/softhsm/libsofthsm2.so” –qky= design0_sign_chain.qky –whakakore=svnA:0 –keyname=design0_sign encrypted_persona1.rbf signed_encrypted_persona1.rbf

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 24

Tuku Urupare

683823 | 2023.05.23 Tuku Urupare

Whakaritenga Pūrere

Ka tautokohia te whakaratonga ahuatanga haumaru tuatahi i roto i te firmware whakarato SDM. Whakamahia te Intel Quartus Prime Programmer ki te uta i te firmware whakarato SDM me te mahi i nga mahi whakarato.
Ka taea e koe te whakamahi i tetahi momo JTAG tango taura hei hono i te Quartus Programmer ki tetahi taputapu Intel Agilex 7 hei whakahaere i nga mahi whakarato.
4.1. Te whakamahi i te SDM Provision Firmware
Ko te Intel Quartus Prime Programmer ka hanga aunoa, ka utaina he ahua kaiawhina taunoa o te wheketere ina kowhiria e koe te mahi arawhiti me te whakahau ki te hotaka i tetahi mea ke atu i te awaawa whirihoranga.
I runga i te whakahau hotaka kua tohua, ko te ahua kaiawhina taunoa wheketere tetahi o nga momo e rua:
· Whakarato pikitia kaiawhina–kei roto i tetahi waahanga awaawa kei roto te firmware whakawhiwhi SDM.
· Atahanga kaiawhina QSPI–e rua nga waahanga awaawa, tetahi kei roto te SDM matua firmware me tetahi waahanga I/O.
Ka taea e koe te hanga pikitia kaiawhina taunoa wheketere file ki te uta ki to taputapu i mua i te mahi i tetahi whakahau hotaka. Whai muri i te whakamaoritanga i te haki matua motuhēhēnga, me waihanga me te haina i tetahi ahua kaiawhina taunoa o te wheketere QSPI na te mea kua whakauruhia te waahanga I/O. Mēnā ka whakahōtakahia e koe te tautuhinga haumarutanga mārō i haina tahitia eFuse, me hanga e koe he whakaratonga me nga whakaahua kaiawhina taunoa o te wheketere QSPI me te umanga kua hainatia tahi. Ka taea e koe te whakamahi i tetahi ahua kaiawhina taunoa o te wheketere i hainatia i runga i tetahi taputapu kaore i tukuna i te mea ka warewarehia e te taputapu kaore i tukuna nga mekameka waitohu kore-Intel i runga i te firmware SDM. Tirohia te whakamahi i te Whakaahua Awhina Awhina QSP i runga i nga taputapu mo te Waihanga 26 Mo etahi atu taipitopito mo te hanga, te hainatanga, me te whakamahi i te qspi wheketere qspi wheketere qspi.
Ko te ahua o te kaiawhina taunoa o te wheketere tuku he mahi whakangao, penei i te whakahōtaka i te hash matua motuhēhēnga, nga huinga tautuhinga haumarutanga, te whakaurunga PUF, te whakawhiwhinga matua pango ranei. Ka whakamahi koe i te Intel Quartus Prime Programming File Utauta raina whakahau Kaihanga hei hanga i te ahua kaiawhina whakarato, me te tohu i te kōwhiringa helper_image, tou ingoa helper_device, te momo momo whakaahua kaiawhina whakarato, me te kowhiria he firmware .zip kua hainatia tahi. file:
quartus_pfg –helper_image -o helper_device=AGFB014R24A -o subtype=PROVISION -o fw_source=signed_agilex.zip signed_provision_helper_image.rbf
Papatonohia te ahua kaiawhina ma te whakamahi i te taputapu Intel Quartus Prime Programmer:
quartus_pgm -c 1 -mjtag -o “p;tohu_provision_helper_image.rbf” –kaha

ISO 9001:2015 Kua Rehitatia

4. Whakarato Pūrere 683823 | 2023.05.23

Tuhipoka:

Ka waiho e koe te mahi arawhiti mai i nga tono, tae atu ki te exampKo nga mea e whakaratohia ana i tenei upoko, i muri mai i te whakamaarama i te ahua kaiawhina, te whakamahi ranei i tetahi whakahau kei roto te mahi arawhiti.

4.2. Ma te QSPI Factory Default Helper Image i runga i nga taputapu
Ko te Intel Quartus Prime Programmer ka hanga aunoa, ka utaina he ahua kaiawhina taunoa o te wheketere QSPI ina kowhiria e koe te mahi arawhiti mo te kaupapa kohiko QSPI file. Whai muri i te whakamaoritanga o te haki matua motuhēhēnga, me waihanga me te haina i te ahua kaiawhina taunoa o te wheketere QSPI, me te whakarite wehe i te ahua kaiawhina wheketere QSPI kua hainatia i mua i te whakamaoritanga i te rama QSPI. 1. Ka whakamahi koe i te Intel Quartus Prime Programming File Kaihanga taputapu raina whakahau ki
hangahia te ahua kaiawhina QSPI, me te tautuhi i te whiringa kaiawhina_imahua, to momo taputapu_kaiawhina, te momo momo whakaahua kaiawhina QSPI, me te kowhiria he firmware .zip. file:
quartus_pfg –helper_image -o helper_device=AGFB014R24A -o subtype=QSPI -o fw_source=signed_agilex.zip qspi_helper_image.rbf
2. Ka haina koe i te ahua kaiawhina taunoa QSPI wheketere:
quartus_sign –family=agilex –operation=sign –qky=design0_sign_chain.qky –pem=design0_sign_private.pem qspi_helper_image.rbf signed_qspi_helper_image.rbf
3. Ka taea e koe te whakamahi i tetahi kaupapa flash QSPI file whakatakotoranga. Ko te ex e whai ake neiampWhakamahia he awaawa whirihoranga kua huri ki te .jic file hōputu:
quartus_pfg -c signed_bitstream.rbf signed_flash.jic -o pūrere=MT25QU128 -o flash_loader=AGFB014R24A -o aratau=ASX4
4. Ka hotaka koe i te ahua kaiawhina kua hainatia ma te whakamahi i te taputapu Intel Quartus Prime Programmer:
quartus_pgm -c 1 -mjtag -o “p;signed_qspi_helper_image.rbf” –kaha
5. Ka porotaka koe i te ahua .jic ki te uira ma te whakamahi i te taputapu Intel Quartus Prime Programmer:
quartus_pgm -c 1 -mjtag -o “p;signed_flash.jic”

4.3. Authentication Root Key Provisioning
Hei whakarite i nga hashes o te taviri pakiaka o te rangatira ki nga piu tinana, tuatahi me uta e koe te firmware whakarato, ka paato i muri mai ko te hashes o te taviri a te rangatira, katahi ka mahi tonu i te whakahou mana. Kaore e hiahiatia he tautuhi-a-roto mena ka huri te taviri pakiaka o te kaupapa ki nga hononga mariko.

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 26

Tuku Urupare

4. Whakarato Pūrere 683823 | 2023.05.23
Ki te whakarite i nga hashes matua motuhēhēnga, ka whakamahere koe i te ahua o te kaiawhina firmware me te whakahaere i tetahi o nga whakahau e whai ake nei hei whakarite i te matua matua .qky files.
// Mo te tinana (kore-kore) eFuses quartus_pgm -c 1 -mjtag -o “p;root0.qky;root1.qky;root2.qky” –non_volatile_key
// Mo te mariko (he rereke) eFuses quartus_pgm -c 1 -mjtag -o “p;root0.qky;root1.qky;root2.qky”
4.3.1. Whakaritenga Anō Wāhanga Maha-Mana Whakataka Papatono Matua
Whai muri i te whakarato i te taputapu, i te rohe pateko ranei nga taviri pakiaka o te rangatira, ka utaina ano e koe te ahua o te kaiawhina o te taputapu, whakamaarama i te tiwhikete whakaaheitanga kaupapa matua matua PR kua hainatia, katahi ka tuku i te taviri pakiaka PR persona bitstream rangatira.
// Mo te tinana (kore-kore) eFuses quartus_pgm -c 1 -mjtag -o “p;root_pr.qky” –pr_pubkey –non_volatile_key
// Mo te mariko (he rereke) eFuses quartus_pgm -c 1 -mjtag -o “p;p;root_pr.qky” –pr_pubkey
4.4. Papatonotanga Key Whakakore ID Fuses
Ka timata me te putanga rorohiko Intel Quartus Prime Pro Edition 21.1, me whakamahi he tiwhikete kiato i hainatia e te Intel me te rangatira o nga huu ID whakakorenga matua. Ka taea e koe te haina i te tiwhikete kiato TT whakakorenga matua me te mekameka waitohu kei a koe nga whakaaetanga hainatanga wahanga FPGA. Ka hangaia e koe te tiwhikete kiato me te kaupapa file taputapu raina whakahau generator. Ka haina koe i te tiwhikete kaore i hainatia ma te whakamahi i te taputapu quartus_sign, i te whakatinanatanga tohutoro ranei.
Ko nga taputapu Intel Agilex 7 e tautoko ana i nga tahataha motuhake o nga TT whakakore matua rangatira mo ia matua pakiaka. I te wa e whakahoahoatia ana tetahi tiwhikete kiato ID whakakore ki te rangatira ki roto i te Intel Agilex 7 FPGA, ka whakatauhia e te SDM ko tehea te taviri pakiaka i haina i te tiwhikete kiato me te pupuhi i te whakahiato ID whakakore matua e rite ana ki taua kii pakiaka.
Ko te ex e whai ake neiampKa hangaia he tiwhikete whakakore matua Intel mo te ID matua Intel 7. Ka taea e koe te whakakapi i te 7 ki te ID whakakore matua Intel e tika ana mai i te 0-31.
Whakahaerehia te whakahau e whai ake nei hei hanga i tetahi tiwhikete kiato ID whakakore matua Intel karekau i haina:
quartus_pfg –ccert -o ccert_type=WAKAKA_INTEL_KEY -o cancel_key=7 unsigned_cancel_intel7.ccert
Whakahaerehia tetahi o nga whakahau e whai ake nei ki te haina i te tiwhikete kiato ID whakakore matua Intel kaore i hainatia:
quartus_sign –family=agilex –operation=SIGN –qky=design0_sign_chain.qky –pem=design0_private.pem –cancel=svnA:0 unsigned_cancel_intel7.ccert signed_cancel_intel7.ccert
quartus_sign –family=agilex –operation=sign –module=softHSM –module_args=”–token_label=agilex-token –user_pin=agilex-token-pin –hsm_lib=/usr/local/lib/softhsm/libsofthsm2.so”

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 27

4. Whakarato Pūrere 683823 | 2023.05.23
–keyname=design0_sign –qky=design0_sign_chain.qky –cancel=svnA:0 unsigned_cancel_intel7.ccert signed_cancel_intel7.ccert
Whakahaerehia te whakahau e whai ake nei hei waihanga i tetahi tiwhikete kiato no te rangatira rangatira kore i hainatia:
quartus_pfg –ccert -o ccert_type=CANCEL_OWNER_KEY -o cancel_key=2 unsigned_cancel_owner2.ccert
Whakahaerehia tetahi o nga whakahau e whai ake nei ki te haina i te tiwhikete kiato no te rangatira rangatira kore i hainatia.
quartus_sign –family=agilex –operation=SIGN –qky=design0_sign_chain.qky –pem=design0_private.pem –cancel=svnA:0 unsigned_cancel_owner2.ccert signed_cancel_owner2.ccert
quartus_sign –family=agilex –operation=sign –module=softHSM –module_args=”–token_label=agilex-token –user_pin=agilex-token-pin –hsm_lib=/usr/local/lib/softhsm/libsofthsm2.so” –keyname= design0_sign –qky=design0_sign_chain.qky –cancel=svnA:0 unsigned_cancel_owner2.ccert signed_cancel_owner2.ccert
Ka oti i a koe te hanga i tetahi tiwhikete kiato ID whakakore matua kua hainatia, ka whakamahi koe i te Intel Quartus Prime Programmer ki te whakarite i te tiwhikete kiato ki te taputapu ma te JTAG.
//Mo te tinana (kore-kore) eFuses quartus_pgm -c 1 -mjtag -o “pi;i hainatia_whakakore_intel7.ccert” –kore_kore_patuhi quartus_pgm -c 1 -mjtag -o “pi;signed_cancel_owner2.ccert” –kore_kore_patuhi
//Mo te mariko (whakahekeheke) eFuses quartus_pgm -c 1 -mjtag -o “pi; haina_whakakore_intel7.ccert” quartus_pgm -c 1 -mjtag -o “pi; hainatia_whakakore_owner2.ccert”
Ka taea e koe te tuku i te tiwhikete kiato ki te SDM ma te whakamahi i te atanga pouaka mēra FPGA, HPS ranei.
4.5. Te whakakore i nga Kī Root
Ko nga taputapu a Intel Agilex 7 ka taea e koe te whakakore i nga hashes matua pakiaka ka tae mai tetahi atu hash matua kaore i whakakorehia. Ka whakakorehia e koe tetahi hash matua matua ma te whirihora tuatahi i te taputapu me tetahi hoahoa kua whai pakiaka tona mekameka hainatanga ki tetahi momo whakamaori matua matua, katahi ka whakahoahohia he tiwhikete kiato mo te whakakore i te haki pakiaka. Me haina e koe te tiwhikete kiato whakakoretanga hash key pakiaka me te mekameka hainatanga i pakiaka ki te matua matua kia whakakorea.
Whakahaerehia te whakahau e whai ake nei ki te whakaputa i tetahi tiwhikete kiato mo te whakakore i te hash matua matua:
quartus_pfg –ccert -o –ccert_type= WHAKATANGA_KEY_HASH unsigned_root_cancel.ccert

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 28

Tuku Urupare

4. Whakarato Pūrere 683823 | 2023.05.23

Whakahaerehia tetahi o nga whakahau e whai ake nei ki te haina i te tiwhikete kiato whakakore i te taviri pakiaka kore hainatia:
quartus_sign –family=agilex –operation=SIGN –qky=design0_sign_chain.qky –pem=design0_private.pem –cancel=svnA:0 unsigned_root_cancel.ccert signed_root_cancel.ccert
quartus_sign –family=agilex –operation=sign –module=softHSM –module_args=”–token_label=agilex-token –user_pin=agilex-token-pin –hsm_lib=/usr/local/lib/softhsm/libsofthsm2.so” –keyname= design0_sign –qky=design0_sign_chain.qky –cancel=svnA:0 unsigned_root_cancel.ccert signed_root_cancel.ccert
Ka taea e koe te whakarite i tetahi tiwhikete kiato mo te whakakore i te hash matua ma te JTAG, FPGA, pouaka pouaka HPS ranei.

4.6. Nga Kaitatau Papatono Fuses
Ka whakahōu koe i te Tau Putanga Haumarutanga (SVN) me te Pseudo Time Stamp (PTS).

Tuhipoka:

Ka aroturuki te SDM i te uara porotiti iti ka kitea i roto i te whirihoranga kua whakaritea, kaore hoki e whakaae ki nga tiwhikete pikinga aatete ina he iti ake te uara porotiti i te uara iti. Me whakahōu koe i nga mea katoa kua tautapa ki te porotiti me te whirihora ano i te taputapu i mua i te whakatakotoranga i tetahi tiwhikete kiato pikinga.

Whakahaerehia tetahi o nga whakahau e whai ake nei e rite ana ki te tiwhikete pikinga counter e hiahia ana koe ki te whakaputa.
quartus_pfg –ccert -o ccert_type=PTS_COUNTER -o counter=<-1:495> unsigned_pts.ccert

quartus_pfg –ccert -o ccert_type=SVN_COUNTER_A -o counter=<-1:63> unsigned_svnA.ccert

quartus_pfg –ccert -o ccert_type=SVN_COUNTER_B -o counter=<-1:63> unsigned_svnB.ccert

quartus_pfg –ccert -o ccert_type=SVN_COUNTER_C -o counter=<-1:63> unsigned_svnC.ccert

quartus_pfg –ccert -o ccert_type=SVN_COUNTER_D -o counter=<-1:63> unsigned_svnD.ccert

Ko te uara porotiti o te 1 ka waihanga i te tiwhikete whakamanatanga pikinga apiti. Ma te whakamaarama i te tiwhikete whakaahuru whakaatete ka taea e koe te whakamaarama i etahi atu tiwhikete pikinga kare i hainatia hei whakahou i ia porotiti. Ka whakamahi koe i te taputapu quartus_sign ki te haina i nga tiwhikete kiato porotiti i roto i te ahua rite ki nga tiwhikete kiato ID whakakore matua.
Ka taea e koe te whakarite i tetahi tiwhikete kiato mo te whakakore i te hash matua ma te JTAG, FPGA, pouaka pouaka HPS ranei.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 29

4. Whakarato Pūrere 683823 | 2023.05.23

4.7. Te Raraunga Raraunga Raraunga Whakarato Root Key
Ka whakamahi koe i te Intel Quartus Prime Programmer ki te whakarato i te matua matua o te Ratonga Ahanoa Raraunga Haumaru (SDOS). Ka utaina aunoatia e te Kaihōtaka te whakaahua kaiawhina firmware hei whakarato i te kī pakiaka SDOS.
quartus_pgm c 1 mjtag –service_root_key –non_volatile_key

4.8. Tautuhinga Haumarutanga Whakaratonga Fuse
Whakamahia te Intel Quartus Prime Programmer ki te tirotiro i nga huinga tautuhinga haumarutanga taputapu me te tuhi ki te .fuse-tuhituhi. file e whai ake nei:
quartus_pgm -c 1 -mjtag -o “ei;hōtaka_file.fuse;AGFB014R24B”

Kōwhiringa · i: Ka utaina e te Kaihōtaka te whakaahua kaiawhina mārō ki te taputapu. · e: Ka panuitia e te Kaihanga Papatono te ngongo mai i te taputapu ka penapena ki roto i te .fuse file.

Ko te .fuse file kei roto he rarangi ingoa takirua takirua. Ka tohua e te uara mehemea kua pupuhihia he ngongo, me nga mea kei roto ranei i te mara.

Ko te ex e whai ake neiampe whakaatu ana i te whakatakotoranga o te .fuse file:

# Maamaa kua hainatia tahi

= "Kaore i pupuhi"

# Whakaaetanga Pūrere Whakamate

= "Kaore i pupuhi"

# Kaore i te haumaru te taputapu

= "Kaore i pupuhi"

# Monokia HPS patuiro

= "Kaore i pupuhi"

# Monokia te whakaurunga ID Intrinsic PUF

= "Kaore i pupuhi"

# Mono JTAG

= "Kaore i pupuhi"

# Monokia te taviri whakamunatanga takai PUF

= "Kaore i pupuhi"

# Monokia te matua whakamunatanga rangatira i roto i te BBRAM = "Kaore i pupuhi"

# Monokia te matua whakamunatanga rangatira ki eFuses = "Kaore i pupuhi"

# Monokia te whainga a te rangatira o te kaupapa here a-iwi 0

= "Kaore i pupuhi"

# Monokia te whainga a te rangatira o te kaupapa here a-iwi 1

= "Kaore i pupuhi"

# Monokia te whainga a te rangatira o te kaupapa here a-iwi 2

= "Kaore i pupuhi"

# Monokia nga eFuses mariko

= "Kaore i pupuhi"

# Whakapaia te karaka SDM ki te oscillator o roto = "Kaore i pupuhi"

# Whakamuna whakamunatanga whakamunatanga matua

= "Kaore i pupuhi"

# Whakakorenga matua a Intel

= “0”

# Maukati eFuses haumarutanga

= "Kaore i pupuhi"

# Kua oti te kaupapa whakamunatanga rangatira

= "Kaore i pupuhi"

# Ka timata te kaupapa matua whakamunatanga rangatira

= "Kaore i pupuhi"

# Kaipupuri matua whakakorenga 0

= “”

# Kaipupuri matua whakakorenga 1

= “”

# Kaipupuri matua whakakorenga 2

= “”

# Karekau te rangatira

“0x00000000000000000000000000000000000000000000000000000

00000000000000000000000000000000000000000000000000000

0000000000000000000000”

# Kaipupuri ki te whai i te taviri 0

“0x00000000000000000000000000000000000000000000000000000

0000000000000000000000000000000000000000000”

# Kaipupuri ki te whai i te taviri 1

“0x00000000000000000000000000000000000000000000000000000

0000000000000000000000000000000000000000000”

# Kaipupuri ki te whai i te taviri 2

“0x00000000000000000000000000000000000000000000000000000

0000000000000000000000000000000000000000000”

# Rahi matua matua o te rangatira

= “Karekau”

# Kaitatau PTS

= “0”

# PTS turanga counter

= “0”

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 30

Tuku Urupare

4. Whakarato Pūrere 683823 | 2023.05.23

# Kaitatau timata QSPI # Kaitatau RMA # Kaitatau SDMIO0 he I2C # Kaitatau SVN A # Kaitatau SVN B # Kaitatau SVN C # Kaitatau SVN D

= “10ms” = “0” = “Kare i pupuhi” = “0” = “0” = “0” = “0”

Whakarerekētia te .fuse file ki te tautuhi i nga huinga haumarutanga e hiahiatia ana. Ko te rarangi ka timata ki te # ka kiia hei rarangi korero. Hei hotaka i te huinga tautuhinga haumarutanga, tangohia te # matua ka tautuhi i te uara ki Blown. Mo te exampe, kia taea ai te whakakorikori i te huinga haumarutanga Firmware i hainatia, whakarereketia te rarangi tuatahi o te whae file ki te whai ake:
Maamaa kua hainatia tahi = "Kua pupuhi"

Ka taea hoki e koe te tohatoha me te whakarite i nga Kaipupuri Kaipupuri i runga i o hiahia.
Ka taea e koe te whakamahi i te whakahau e whai ake nei ki te mahi i te haki, hotaka, me te manatoko i te matua matua matua matua:
quartus_pgm -c 1 -mjtag -o “ibpv;root0.qky”

Kōwhiringa · i: Ka utaina te whakaahua kaiāwhina mārō ki te taputapu. · b: Ka mahia he haki patea ki te manatoko i te kore e pai ana nga huinga tautuhinga haumarutanga
kua pupuhi. · p: Papatonohia te ngongo. · v: Manatokohia te kī i porotakahia i runga i te taputapu.
I muri i te whakatakotoranga i te .qky file, ka taea e koe te tirotiro i nga korero mo te whakakorikori ma te tirotiro ano i nga korero mo te whakakorikori kia mohio he kore-kore nga uara a te rangatira o te taviri ki te iwi whanui me te rahi o te taviri a te rangatira.
Ahakoa ko nga mara e whai ake nei kaore e taea te tuhi ma te .fuse file tikanga, ka whakaurua i roto i te putanga mahi tirotiro mo te manatoko: · Karekau te taputapu i te haumaru · Whakamate whakaaetanga taputapu · Monohia te hash ki te iwi rangatira 0 · Monokia te hash ki te iwi rangatira 1 · Monokia te hash ki te iwi rangatira 2 · Te whakakorenga matua Intel · Ka timata te kaupapa matua whakamunatanga a te rangatira · Kua oti te kaupapa whakamunatanga a te rangatira · Kua whakakorehia e te rangatira te whakakoretanga · Te Hash ki te iwi rangatira · Te rahi o te taviri a te rangatira · Te rahi o te taviri matua o te rangatira · Te riipene a te rangatira.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 31

4. Whakarato Pūrere 683823 | 2023.05.23
· porotiti PTS · turanga porotiti PTS · whakaroa timata QSPI · porotiti RMA · SDMIO0 he I2C · porotiti SVN A · porotiti SVN B · porotiti SVN C · porotiti SVN D
Whakamahia te Intel Quartus Prime Programmer ki te whakarite i te .fuse file hoki ki te taputapu. Mēnā ka tāpirihia e koe te kōwhiringa i, ka utaina aunoatia e te Kaihōtaka te mārō whakawhiwhinga ki te whakahōtaka i ngā huinga tautuhinga haumarutanga.
//Mo te tinana (kore-kore) eFuses quartus_pgm -c 1 -mjtag -o “pi;hōtaka_file.fuse” –non_volatile_key
//Mo te mariko (whakahekeheke) eFuses quartus_pgm -c 1 -mjtag -o “pi;hōtaka_file.fuse”
Ka taea e koe te whakamahi i te whakahau e whai ake nei ki te manatoko mena he rite te hash ki te pakiaka o te taputapu ki te .qky kei te whakahau:
quartus_pgm -c 1 -mjtag -o “v;root0_another.qky”
Ki te kore nga taviri e taurite, ka rahua te Kaihōtaka me tetahi karere hapa Mahi i rahua.
4.9. AES Root Key Provisioning
Me whakamahi e koe he tiwhikete kiato matua matua AES kua hainatia hei hotaka i te matua AES ki tetahi taputapu Intel Agilex 7.
4.9.1. AES Root Key Compact Certificate
Ka whakamahi koe i te taputapu raina whakahau quartus_pfg hei huri i to matua matua AES .qek file ki te whakatakotoranga .ccert tiwhikete kiato. Ka tohua e koe te waahi rokiroki matua i te wa e hanga ana te tiwhikete kiato. Ka taea e koe te whakamahi i te taputapu quartus_pfg ki te hanga i tetahi tiwhikete kore haina mo te hainatanga a muri ake nei. Me whakamahi koe i tetahi mekameka waitohu me te whakaaetanga hainatanga tiwhikete matua matua AES, moka whakaaetanga 6, kia taea ai te hainatanga i tetahi tiwhikete kiato matua AES.

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 32

Tuku Urupare

4. Whakarato Pūrere 683823 | 2023.05.23
1. Waihangahia he takirua matua hei haina i te tiwhikete kiato matua AES ma te whakamahi i tetahi o nga whakahau e whai ake neiampiti:
quartus_sign –family=agilex –operation=make_private_pem –curve=secp384r1 aesccert1_private.pem
quartus_sign –family=agilex –operation=make_public_pem aesccert1_private.pem aesccert1_public.pem
pkcs11-tool –module=/usr/local/lib/softhsm/libsofthsm2.so –tohu-tohu agilex-token –takiuru –pin agilex-token-pin –keypairgen mechanism ECDSA-KEY-PAIR-GEN –key-momo EC: secp384r1 –tohu-whakamahi – tapanga aesccert1 –id 2
2. Waihangahia he mekameka waitohu me te huinga moka whakaaetanga tika ma te whakamahi i tetahi o nga whakahau e whai ake nei:
quartus_sign –family=agilex –operation=append_key –previous_pem=root0_private.pem –previous_qky=root0.qky –permission=0x40 –cancel=1 –input_pem=aesccert1_public.pem aesccert1_sign_chain.qky
quartus_sign –family=agilex –operation=append_key –module=softHSM -module_args=”–token_label=agilex-token –user_pin=agilex-token-pin –hsm_lib=/usr/local/lib/softhsm/libsofthsm2.so” –previous_keyname= root0 –previous_qky=root0.qky –permission=0x40 –whakakore=1 –input_keyname=aesccert1 aesccert1_sign_chain.qky
3. Waihangatia he tiwhikete kiato AES kaore i hainatia mo te waahi rokiroki matua AES e hiahiatia ana. Ko nga whiringa rokiroki matua AES e whai ake nei e waatea ana:
· EFUSE_WRAPPED_AES_KEY
· IID_PUF_WRAPPED_AES_KEY
· UDS_IID_PUF_WRAPPED_AES_KEY
· BBRAM_WRAPPED_AES_KEY
· BBRAM_IID_PUF_WRAPPED_AES_KEY
· BBRAM_UDS_IID_PUF_WRAPPED_AES_KEY
// Waihangahia eFuse AES matua matua tiwhikete kore haina quartus_pfg –ccert -o ccert_type=EFUSE_WRAPPED_AES_KEY -o qek_file=aes.qek unsigned_efuse1.ccert
4. Waitohuhia te tiwhikete kiato me te whakahau quartus_sign me te whakatinanatanga tohutoro.
quartus_sign –family=agilex –operation=sign –pem=aesccert1_private.pem –qky=aesccert1_sign_chain.qky unsigned_ 1.ccert haina_ 1.ccert
quartus_sign –family=agilex –operation=sign –module=softHSM –module_args=”–token_label=agilex-token –user_pin=agilex-token-pin –hsm_lib=/usr/local/lib/softhsm/libsofthsm2.so”

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 33

4. Whakarato Pūrere 683823 | 2023.05.23

–keyname=aesccert1 –qky=aesccert1_sign_chain.qky unsigned_ 1.ccert haina_ 1.ccert
5. Whakamahia te Intel Quartus Prime Programmer ki te whakarite i te tiwhikete kiato matua matua AES ki te taputapu Intel Agilex 7 mā JTAG. Ka whakakorea e te Intel Quartus Prime Programmer te hotaka eFuses mariko ina whakamahi ana i te momo tiwhikete kiato EFUSE_WRAPPED_AES_KEY.
Ka taapirihia e koe te kowhiringa -non_volatile_key ki te tautuhi i nga whakakorikori tinana.
//Mo te tinana (kore-kore) eFuse AES matua matua quartus_pgm -c 1 -mjtag -o “pi;signed_efuse1.ccert” –kore_kore_pātuhi

//Mo te mariko (whakahekeheke) eFuse AES matua matua quartus_pgm -c 1 -mjtag -o “pi;signed_efuse1.ccert”

//Mo te matua matua BBRAM AES quartus_pgm -c 1 -mjtag -o “pi;signed_bbram1.ccert”

Ka tautokohia e te punaha SDM me te maataki matua nga kaupapa tiwhikete matua AES. Ka taea hoki e koe te whakamahi i te atanga pouaka mēra SDM mai i te papanga FPGA, HPS ranei hei hotaka i tetahi tiwhikete matua AES.

Tuhipoka:

Ko te whakahau quartus_pgm e kore e tautoko i nga whiringa b me v mo nga tiwhikete kiato(.ccert).

4.9.2. Intrinsic ID® PUF AES Root Key Provisioning
Ko te whakatinana i te Intrinsic* ID PUF takai AES Key kei roto i enei waahanga e whai ake nei: 1. Te whakauru i te Intrinsic ID PUF ma te JTAG. 2. Te takai i te matua matua AES. 3. Whakatakahia nga raraunga kaiawhina me te takai i te taviri ki roto i te mahara flash SPI quad. 4. Te uiui i te mana whakahohenga ID Intrinsic PUF.
Ko te whakamahi hangarau ID Intrinsic me whai kirimana raihana motuhake me te Intrinsic ID. Ko te rorohiko a Intel Quartus Prime Pro Edition ka aukati i nga mahi PUF me te kore raihana e tika ana, penei i te whakaurunga, te takai matua, me te hotaka raraunga PUF ki te QSPI flash.

4.9.2.1. ID Intrinsic PUF whakaurunga
Ki te whakauru i te PUF, me whakamahi koe i te maru tuku SDM. Ko te firmware whakarato ko te firmware tuatahi ka utaina i muri i te huringa hiko, a me tuku e koe te whakahau whakauru PUF i mua i tetahi atu whakahau. Ka tautokohia e te umanga whakawhiwhi etahi atu whakahau i muri i te whakaurunga o te PUF, tae atu ki te takai matua AES me te whakatakotoranga quad SPI, heoi, me huri hiko te taputapu ki te uta i te awa moka whirihoranga.
Ka whakamahi koe i te Intel Quartus Prime Programmer hei whakaoho i te whakaurunga PUF me te whakaputa i nga raraunga kaiawhina PUF .puf file.

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 34

Tuku Urupare

4. Whakarato Pūrere 683823 | 2023.05.23

Whakaahua 7.

ID Intrinsic PUF whakaurunga
quartus_pgm Te whakauru PUF

Whakauruhia nga raraunga kaiawhina PUF

Kaiwhakahaere Pūrere Haumaru (SDM)

wrapper.puf Raraunga Kaiwhina
Ka utaina aunoatia e te Kaihōtaka he atahanga kaiawhina firmware ina tohua e koe te mahi i me te tohenga .puf.
quartus_pgm -c 1 -mjtag -o “ei;help_data.puf;AGFB014R24A”
Mēnā kei te whakamahi koe i te mārō kua hainatia tahi, ka whakahōtakahia e koe te whakaahua kaiāwhina mārō i haina tahi i mua i te whakamahi i te whakahau whakauru PUF.
quartus_pgm -c 1 -mjtag -o “p;kua_tohua_kaiawhina_image.rbf” –force quartus_pgm -c 1 -mjtag -o “e;help_data.puf;AGFB014R24A”
Kua whakaurua te UDS IID PUF i te wa e hangaia ana nga taputapu, kaore i te waatea mo te whakauru ano. Engari, ka whakamahi koe i te Kaiwhakataka hei whakatau i te waahi o nga raraunga kaiawhina UDS PUF i runga i te IPCS, tango i te .puf file tika, ka whakamahi i te UDS .puf file he rite tonu ki te .puf file i tangohia mai i te taputapu Intel Agilex 7.
Whakamahia te tono Programmer e whai ake nei hei whakaputa kupu file kei roto he rarangi o URLs tohu ki te taputapu-motuhake files i runga i te IPCS:
quartus_pgm -c 1 -mjtag -o “e;ipcs_urls.txt;AGFB014R24B” –ipcs_urls
4.9.2.2. Te takai i te AES Root Key
Ka whakaputa koe i te IID PUF takai AES matua matua .wkey file ma te tuku tiwhikete hainatia ki te SDM.
Ka taea e koe te whakamahi i te Intel Quartus Prime Programmer ki te whakaputa aunoa, ki te haina me te tuku i te tiwhikete ki te takai i to matua matua AES, ka whakamahi ranei koe i te Intel Quartus Prime Programming. File Kaihanga hei whakaputa i tetahi tiwhikete kaore i hainatia. Ka haina koe i te tiwhikete kaore i hainatia ma te whakamahi i au ake taputapu, te taputapu hainatanga Quartus ranei. Ka whakamahi koe i te Kaihōtaka ki te tuku i te tiwhikete kua hainatia me te takai i to matua matua AES. Ka taea te whakamahi i te tiwhikete kua hainatia ki te whakarite i nga taputapu katoa ka taea te whakamana i te mekameka hainatanga.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 35

4. Whakarato Pūrere 683823 | 2023.05.23

Whakaahua 8.

Te takai i te Kī AES ma te whakamahi i te Intel Quartus Prime Programmer
.pem Tūmataiti
Kī

.qky

quartus_pgm

Takaia te Kī AES

AES.QSKigYnature RootCPhuabilnic Key

Hangaia te Kī Takai PUF

Kua takaia te Kī AES

SDM

.qek Whakamunatanga
Kī

.wkey PUF-Takaitia
Kī AES

1. Ka taea e koe te whakaputa i te IID PUF i takai i te matua AES (.wkey) me te Kaihōtaka ma te whakamahi i nga tohenga e whai ake nei:
· Ko te .qky file kei roto he mekameka waitohu me te whakaaetanga tiwhikete matua AES
· Ko te .pem file mo te kī whakamutunga i roto i te mekameka waitohu
· Ko te .qek file te pupuri i te matua matua AES
· Te 16-paita arawhiti vector (iv).

quartus_pgm -c 1 -mjtag –qky_file=aes0_sign_chain.qky –pem_file=aes0_sign_private.pem –qek_file=aes.qek –iv=1234567890ABCDEF1234567890ABCDEF -o “ei;aes.wkey;AGFB014R24A”

2. Ka taea e koe te whakaputa i tetahi tiwhikete matua AES takai IID PUF kaore i hainatia me te Papatonotanga. File Kaihanga e whakamahi ana i nga tohenga e whai ake nei:

quartus_pfg –ccert -o ccert_type=IID_PUF_WRAPPED_AES_KEY -o qek_file=aes.qek –iv=1234567890ABCDEF1234567890ABCDEF unsigned_aes.ccert

3. Ka hainatia e koe te tiwhikete kore haina me o ake taputapu hainatanga, te taputapu quartus_sign ranei ma te whakamahi i te whakahau e whai ake nei:

quartus_sign –family=agilex –operation=sign –qky=aes0_sign_chain.qky –pem=aes0_sign_private.pem unsigned_aes.ccert signed_aes.ccert

4. Ka whakamahi koe i te Kaihōtaka ki te tuku i te tiwhikete AES kua hainatia me te whakahoki mai i te kī takai (.wkey) file:

wha_pgm -c 1 -mjtag –ccert_file=signed_aes.ccert -o “ei;aes.wkey;AGFB014R24A”

Tuhipoka: Kaore e tika ana te mahi i mena kua utaina e koe te ahua o te kaiawhina firmware, hei tauiraample, ki te whakauru i te PUF.

4.9.2.3. Raraunga Kaiwhina Papatono me te Kī Takai ki te Mahara Kohiko QSPI
Ka whakamahi koe i te Quartus Papatonotanga File Kaihanga atanga kauwhata hei hanga i tetahi whakaahua kohiko QSPI tuatahi kei roto he wehewehenga PUF. Me whakaputa me te hotaka i tetahi atahanga hotaka rama rama hei taapiri i te wehenga PUF ki te uira QSPI. Te hanganga o te PUF

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 36

Tuku Urupare

4. Whakarato Pūrere 683823 | 2023.05.23

Whakaahua 9.

wehewehenga raraunga me te whakamahi i nga raraunga kaiawhina PUF me te kii takai files mo te hanga whakaahua kohiko kaore i te tautokohia e te Papatonotanga File Atanga raina whakahau kaihanga.
Ko nga hikoinga e whai ake nei e whakaatu ana i te hanga i tetahi whakaahua hotaka rama me te raraunga kaiawhina PUF me te kii takai:
1. I runga i te File tahua, pāwhiri Papatonotanga File Kaihanga. I runga i te Putanga Files ripa hanga nga whiringa e whai ake nei:
a. Mo te Whānau Pūrere tohua Agilex 7.
b. Mo te aratau Whirihoranga, tohua te Active Serial x4.
c. Mo te whaiaronga Putanga tirotiro ki to putanga file whaiaronga. Ko tenei exampKa whakamahia e koe te putanga_files.
d. Mo te Ingoa, tohua he ingoa mo te papatono file hei hanga. Ko tenei exampKa whakamahia e koe te putanga_file.
e. I raro i te Whakaahuatanga tohua te kaupapa files ki te whakaputa. Ko tenei exampKa hangaia e ia te JTAG whirihoranga autaki File (.jic) mo te whirihoranga taputapu me te Raw Binary File o te Atahanga Kaiwhina Papatono (.rbf) mo te ahua kaiawhina taputapu. Ko tenei exampka kowhiri hoki i te Mahere Mahara File (.map) me Raw Papatonotanga Raraunga File (.rpd). Ko nga raraunga hotaka mata file he mea tika mena ka whakamahere koe ki te whakamahi i tetahi kaitakataka tuatoru a muri ake nei.
Papatonotanga File Kaihanga – Putanga Files Ripa – Tīpakohia JTAG Whirihoranga Autaki

Aratau Whirihoranga Whānau Pūrere
Putanga file ripa
Whaiaronga putanga
JTAG Autaki (.jic) Mahere Mahara File Kaiawhina Papatono Raw Papatono Mata
I runga i te Whakauru Files ripa, hanga i te kōwhiringa e whai ake nei: 1. Pāwhiritia Tāpiri Bitstream ka tirotiro ki tou .sof. 2. Tīpakohia to .sof file ka paato i nga Taonga.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 37

4. Whakarato Pūrere 683823 | 2023.05.23
a. Whakahohehia te taputapu hainatanga. b. Mo te Kī Tūmataiti file tohua to .pem file. c. Whakakā Whakamunatia te whakamunatanga. d. Mo te Kī Whakamuna file tohua to .qek file. e. Pāwhiritia OK kia hoki ki te matapihi o mua. 3. Hei tautuhi i to raraunga kaiawhina PUF file, pāwhiri Tāpiri Raraunga Raw. Hurihia te Files o te momo tahua taka-iho ki Quartus Physical Unclonable Function File (*.puf). Tirotiro ki to .puf file. Mena kei te whakamahi koe i te IID PUF me te UDS IID PUF, tuaruatia tenei taahiraa kia .puf files mo ia PUF ka taapirihia hei whakaurunga files. 4. Hei whakapūtā i tō kī AES takai file, pāwhiri Tāpiri Raraunga Raw. Hurihia te Files o te momo tahua taka-iho ki Quartus Wrapped Key File (*.wkey). Tirotiro ki to .wkey file. Mena kua takaia e koe nga taviri AES ma te whakamahi i te IID PUF me te UDS IID PUF, tuaruatia tenei taahiraa kia .wkey files mo ia PUF ka taapirihia hei whakaurunga files.
Whakaatu 10. Whakatauhia te Whakauru Files mo te Whirihoranga, Motuhēhēnga, me te Whakamuna

Tāpiri Bitstream Tāpiri Raraunga Raw
Āhuatanga
Kī tūmataiti file
Whakaoti whakamunatanga Kī whakamunatanga
I runga i te ripa Pūrere Whirihoranga, mahia nga whiringa e whai ake nei: 1. Paatohia te Tāpiri Pūrere ka kowhiri i to taputapu kohiko mai i te rarangi o nga rama e waatea ana.
nga taputapu. 2. Tīpakohia te taputapu whirihoranga kua taapirihia e koe ka paato i te Tāpiri Wehewehenga. 3. I roto i te pouaka korero Whakatika Wehewehenga mo te Whakauru file ka whiriwhiri i to .sof mai i te
rārangi takaiho. Ka taea e koe te pupuri i nga taunoa, te whakatika ranei i etahi atu tawhā i te pouaka korero Whakatika Wehewehenga.

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 38

Tuku Urupare

4. Whakarato Pūrere 683823 | 2023.05.23
Whakaatu 11. Te whakapūtā i to .sof Whirihoranga Aromatawai Waehanga

Pūrere Whirihoranga
Whakatika Wehewehenga Tāpirihia .sof file

Tāpiri Wehewehenga

4. Ina tāpiri koe i te .puf me te .wkey hei tāuru files, te Papatonotanga File Hangaia aunoatia e Generator he wehewehenga PUF i roto i to Pūrere Whirihoranga. Hei rokiroki i te .puf me te .wkey i roto i te wehenga PUF, tohua te wehenga PUF ka paato i te Whakatika. I roto i te pouaka korero Whakatika Wehewehenga, tohua to .puf me te .wkey files mai i nga rarangi takaiho. Mena ka tangohia e koe te wehenga PUF, me tango me te taapiri ano i te taputapu whirihoranga mo te Papatonotanga File Kaihanga hei hanga i tetahi atu wehewehenga PUF. Me whakarite kia tohua e koe te .puf me te .wkey tika file mo te IID PUF me te UDS IID PUF.
Whakaahua 12. Tāpirihia te .puf me te .wkey files ki te Wehewehenga PUF

Wehewehenga PUF

Whakatikatika

Whakatika Wehewehenga

Kohiko Loader

Tīpakohia Hanga

5. Mo te tawhā Flash Loader tohua te whanau taputapu Intel Agilex 7 me te ingoa taputapu e rite ana ki to Intel Agilex 7 OPN.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 39

4. Whakarato Pūrere 683823 | 2023.05.23
6. Paatohia te Hanga hei whakaputa i te putanga files i tohua e koe ki te Putanga Files ripa.
7. Te Papatonotanga File Ka panui e Generator to .qek file me te tono ki a koe mo to kupuhipa. Patohia to kupuhipa hei whakautu ki te tono kiangahipa Whakauru QEK. Pāwhiritia te tomo matua.
8. Pāwhiritia OK ka te Papatonotanga File E whakaatu ana a Generator te reanga angitu.
Ka whakamahi koe i te Intel Quartus Prime Programmer ki te tuhi i te ahua hötaka QSPI ki te QSPI flash memory. 1. I runga i te Intel Quartus Prime Tools tahua tīpako Kaihōtaka. 2. I roto i te Kaihōtaka, pāwhiritia te Tatūnga Pūmārō ka kōwhiri i tētahi Intel tūhono
FPGA Tikiake Cable. 3. Pāwhiritia Tāpiri File ka tirotiro ki to .jic file.
Whakaahua 13. Papatono .jic

Papatonotanga file

Papatono/ Whirihora

JTAG mekameka matawai
4. Wewetehia te pouaka e hono ana ki te ahua Kaiawhina. 5. Tīpakohia Papatono / Whirihora mo te putanga .jic file. 6. Whakakāhia te pātene Tīmata ki te whakarite i tō pūmahara kohiko SPI tapawhā. 7. Hurihuri hiko to papa. I whakaritea te hoahoa ki te mahara kohiko SPI quad
ka utaina te taputapu ki roto i te FPGA whaainga.
Me whakaputa me te hotaka i tetahi atahanga hotaka kohiko katoa hei taapiri i te wehenga PUF ki te kohiko SPI quad.
I te wa e noho ana he wehewehenga PUF i roto i te uira, ka taea te whakamahi i teIntel Quartus Prime Programmer ki te uru tika ki nga raraunga kaiawhina PUF me te kii takai. files. Mo te exampNa, ki te kore te whakahohe, ka taea te whakauru ano i te PUF, te takai ano i te taviri AES, a muri iho ka whakarite noa i te PUF files me te kore e tuhirua i te flash katoa.

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 40

Tuku Urupare

4. Whakarato Pūrere 683823 | 2023.05.23
Ka tautokohia e te Intel Quartus Prime Programmer te tohenga mahi e whai ake nei mo PUF filekei roto i te wehewehenga PUF o mua:
· p: hōtaka
· v: manatoko
· r: ūkui
· b: taki patea
Me whai koe i nga tikanga here mo te whakaurunga PUF, ahakoa he wehewehenga PUF.
1. Whakamahia te tohenga mahi i ki te uta i te ahua o te kaiawhina firmware mo te mahi tuatahi. Mo te exampNa, ko te raupapa whakahau e whai ake nei ka whakauru ano i te PUF, ka takai ano i te taviri pakiaka AES, te whakakore i nga raraunga kaiawhina PUF tawhito me te taviri takai, ka porotaka me te manatoko i nga raraunga kaiawhina PUF hou me te matua pakiaka AES.
quartus_pgm -c 1 -mjtag -o “ei;new.puf;AGFB014R24A” quartus_pgm -c 1 -mjtag –ccert_file=signed_aes.ccert -o “e;hou.wkey;AGFB014R24A” quartus_pgm -c 1 -mjtag -o “r;old.puf” quartus_pgm -c 1 -mjtag -o “r;old.wkey” quartus_pgm -c 1 -mjtag -o “p;new.puf” quartus_pgm -c 1 -mjtag -o “p;new.wkey” quartus_pgm -c 1 -mjtag -o “v;new.puf” quartus_pgm -c 1 -mjtag -o "v;hou.wkey"
4.9.2.4. Te Uiui i te Tuinga Whakahohe PUF ID Intrinsic
Whai muri i to whakaurunga i te PUF Intrinsic ID, takai he taviri AES, hangaia te hotaka rama files, me te whakahou i te flash quad SPI, ka huri koe i to taputapu ki te whakaohooho me te whirihoranga PUF mai i te awa moka whakamunatia. Ka whakaatu te SDM i te mana whakahohe PUF me te mana whirihoranga. Mena ka rahua te whakahohenga PUF, ka tukuna e te SDM te mana hapa PUF. Whakamahia te tono quartus_pgm ki te uiui i te mana whirihoranga.
1. Whakamahia te whakahau e whai ake nei hei uiui i te mana whakahohenga:
quartus_pgm -c 1 -mjtag –status –status_type=”CONFIG”
Anei a sampte putanga mai i te whakahohenga angitu:
Mōhiohio (21597): Whakautu a CONFIG_STATUS Pūrere kei te haere i te aratau kaiwhakamahi 00006000 RESPONSE_CODE=OK, LENGTH=6 00000000 STATE=IDLE 00160300 Putanga C000007B MSEL=QSPI_NORMAL, nSTATUS=1, nSTATUS=1, nSTATUS=1
CLOCK_SOURCE=INTERNAL_PLL 0000000B CONF_DONE=1, INIT_DONE=1, CVP_DONE=0, SEU_ERROR=1 00000000 Hapa tauwāhi 00000000 Hapa taipitopito Whakautu o PUF_STATUS 00002000_2 IID STATUS=PUF_ACTIVATION_SUCCESS,
RELIABILITY_DIAGNOSTIC_SCORE=5, TEST_MODE=0 00000500 UDS_IID STATUS=PUF_ACTIVATION_SUCCESS,
RELIABILITY_DIAGNOSTIC_SCORE=5, TEST_MODE=0

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 41

4. Whakarato Pūrere 683823 | 2023.05.23

Mēnā kei te whakamahi noa koe i te IID PUF, i te UDS IID PUF rānei, ā, kāore anō koe kia whakamaherehia he raraunga kaiawhina .puf file mo te PUF ranei kei roto i te rama QSPI, karekau taua PUF e whakahohe, ka whakaatu te mana PUF kaore i te whaimana nga raraunga kaiawhina PUF. Ko te ex e whai ake neiampe whakaatu ana i te mana PUF ina karekau te raraunga kaiawhina PUF i whakahoahoa mo tetahi PUF:
Whakautu o PUF_STATUS 00002000 RESPONSE_CODE=OK, LENGTH=2 00000002 USER_IID STATUS=PUF_DATA_CORRUPTED,
RELIABILITY_DIAGNOSTIC_SCORE=0, TEST_MODE=0 00000002 UDS_IID STATUS=PUF_DATA_CORRUPTED,
RELIABILITY_DIAGNOSTIC_SCORE=0, TEST_MODE=0

4.9.2.5. Te waahi o te PUF i te Mahara Kohiko
Ko te waahi o te PUF file he rereke mo nga hoahoa e tautoko ana i te RSU me nga hoahoa kaore i te tautoko i te waahanga RSU.

Mo nga hoahoa kaore i te tautoko i te RSU, me whakauru e koe te .puf me te .wkey files ka hangaia e koe nga whakaahua kohiko kua whakahoutia. Mo nga hoahoa e tautoko ana i te RSU, kaore te SDM e tuhirua i nga waahanga raraunga PUF i te wa o te wheketere, i te whakahou whakaahua tono ranei.

Ripanga 2.

Tahora Wahi-Waihanga Kohiko kaore he Tautoko RSU

Kohiko Offset (i roto i nga paita)

Rahi (i roto i nga paita)

Ihirangi

Whakaahuatanga

0K 256K

256K 256K

Whirihoranga Whakahaere Firmware Whirihoranga Whakahaere Firmware

Firmware e rere ana i runga i te SDM.

512K

256K

Pūmau Whakahaere Whirihoranga

768K

256K

Pūmau Whakahaere Whirihoranga

32K

kape raraunga PUF 0

Hanganga raraunga mo te penapena raraunga kaiawhina PUF me te kape matua AES kua takai PUF 0

1M+32K

32K

kape raraunga PUF 1

Hanganga raraunga mo te penapena raraunga kaiawhina PUF me te kape matua AES kua takai PUF 1

Ripanga 3.

Tahora Wahi-Waihanga Kohiko me te Tautoko RSU

Kohiko Offset (i roto i nga paita)

Rahi (i roto i nga paita)

Ihirangi

Whakaahuatanga

0K 512K

512K 512K

Maama Whakatau Maama Whakatau

Firmware ki te tautuhi me te uta i te ahua tino nui.

1M 1.5M

512K 512K

Maama Whakatau Maama Whakatau

8K + 24K

Whakataunga raraunga firmware

Whakapapa

Kua rahuitia mo te whakamahi maru Whakatau.

2M + 32K

32K

Kua rahuitia mo SDM

Kua rahuitia mo SDM.

2M + 64K

Taurangi

Whakaahua wheketere

He ahua ngawari ka hangaia e koe hei taapiri mena ka kore e utaina nga whakaahua tono katoa. Kei roto i tenei ahua te CMF e rere ana i runga i te SDM.

Whai muri

32K

kape raraunga PUF 0

Hanganga raraunga mo te penapena raraunga kaiawhina PUF me te kape matua AES kua takai PUF 0
haere tonu…

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 42

Tuku Urupare

4. Whakarato Pūrere 683823 | 2023.05.23

Kohiko Offset (i roto i nga paita)

Rahi (i roto i nga paita)

Panuku +32K 32K

Ihirangi kape raraunga PUF 1

Panuku + 256K 4K Panuku +32K 4K Panuku +32K 4K

Tārua ripanga wehewehenga-iti 0 kape ripanga wehewehenga-iti 1 kape paraka tohu tohu CMF 0

Panuku +32K _

kape paraka tohu CMF 1

Taurangi Taurangi

Whakaahua tono 1 Whakaahua tono 2

4.9.3. Whakarato Kī Pango

Whakaahuatanga
Hanganga raraunga mo te penapena raraunga kaiawhina PUF me te kape matua AES kua takai PUF 1
Ko te hanganga raraunga hei whakahaere i te whakahaerenga o te rokiroki flash.
He rarangi tohu tohu ki nga whakaahua tono i runga i te raupapa o te kaupapa matua. Ka taapirihia e koe tetahi ahua, ka piki ake taua ahua.
He kape tuarua o te rarangi tohu tohu ki nga whakaahua tono.
Ko to pikitia tono tuatahi.
Ko to pikitia tono tuarua.

Tuhipoka:

Ka awhina a TheIntel Quartus PrimeProgrammer ki te whakatu i tetahi hononga haumaru kua whakamotuhēhēhia i waenga i te taputapu Intel Agilex 7 me te ratonga whakarato matua pango. Ka whakapumautia te hononga haumaru ma te https me te hiahia kia maha nga tiwhikete kua tautuhia ma te whakamahi i tetahi tuhinga file.
I te wa e whakamahi ana i te Whakarato Patua Pango, ka kii a Intel kia karo koe i te hono-waho i te titi TCK ki te toia ake, ki te toia iho ranei tetahi parenga i te wa e whakamahi tonu ana mo JTAG. Heoi, ka taea e koe te hono i te titi TCK ki te VCCIO SDM hiko hiko ma te whakamahi i te parenga 10 k. Ko te aratohu kei roto i nga Aratohu Hononga Pin ki te hono i te TCK ki te parenga kume-iho 1k kua whakauruhia mo te whakakore haruru. Ko te huringa i roto i te arataki ki te parenga kume-ake 10k karekau e pa ki te mahi a te taputapu. Mo etahi atu korero mo te hono i te titi TCK, tirohia nga Aratohu Hononga 7 Pin Intel Agilex.
Ko te Thebkp_tls_ca_certcertcertificate ka whakamotuhēhē i tō tauira ratonga whakarato kī pango ki tō tauira kaihātepe whakarato kī pango. Ko te Thebkp_tls_*tiwhikete e whakamotuhēhē ana i tō tauira kaihātaka whakarato kī pango ki tō tauira ratonga whakarato kī pango.
Ka hanga e koe he kuputuhi file kei roto nga korero e tika ana mo teIntel Quartus Prime Programmer ki te hono atu ki te ratonga whakarato matua pango. Hei timata i te whakaratonga matua pango, whakamahia te atanga raina whakahau a Programmer ki te whakapūtā te kuputuhi kōwhiringa whakarato kī pango. file. Ka haere aunoa te whakawhiwhinga ki pango. Mo te uru atu ki te ratonga whakarato matua pango me nga tuhinga e pa ana, me waea atu ki te Tautoko Intel.
Ka taea e koe te whakawhiwhi ki te pango pango ma te whakamahi thequartus_pgmcommand:
quartus_pgm -c -m – taputapu –bkp_options=bkp_options.txt
Ko nga tohenga whakahau e whakaatu ana i nga korero e whai ake nei:

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 43

4. Whakarato Pūrere 683823 | 2023.05.23

· -c: tau taura · -m: ka whakapūtā te aratau hōtaka pēnei i a JTAG · –pūrere: ka whakapūtā he taupū taputapu kei te JTAG mekameka. Ko te uara taunoa ko te 1. · –bkp_options: he tohu kuputuhi file kei roto ko nga whiringa whakarato matua pango.
Nga korero e pa ana Intel Agilex 7 Device Family Pin Aratohu Hononga

4.9.3.1. Kōwhiringa Whakarato Kī Pango
Ko nga whiringa whakarato matua pango he kuputuhi file i tukuna ki te Kaihōtaka ma te tono quartus_pgm. Ko te file kei roto nga korero e hiahiatia ana hei whakaoho i te whakaratonga matua pango.
E whai ake nei he exampte o te bkp_options.txt file:
bkp_cfg_id = 1 bkp_ip = 192.167.1.1 bkp_port = 10034 bkp_tls_ca_cert = root.cert bkp_tls_prog_cert = prog.cert bkp_tls_prog_key = prog_key.pem_prog_prog_key = prog_key.pem_prog1234 https://192.167.5.5:5000 bkp_proxy_user = takawaenga_kaiwhakamahi bkp_proxy_password = takawaenga_kupuhipa

Ripanga 4.

Kōwhiringa Whakarato Kī Pango
Ko tenei ripanga e whakaatu ana i nga whiringa e hiahiatia ana hei whakaoho i te whakaratonga matua pango.

Ingoa Kōwhiringa

Momo

Whakaahuatanga

bkp_ip

E hiahiatia ana

Ka whakapūtā te wāhitau IP tūmau e whakahaere ana i te ratonga whakarato kī pango.

tauranga_bkp

E hiahiatia ana

Tauwhāitihia te tauranga ratonga whakarato matua pango e hiahiatia ana hei hono atu ki te tūmau.

bkp_cfg_id

E hiahiatia ana

Ka tautuhi i te ID rerenga whirihoranga whakarato matua pango.
Ka waihangahia e te ratonga whakarato matua pango nga rerenga whirihoranga whakarato matua pango tae atu ki te matua AES, nga tautuhinga eFuse e hiahiatia ana, me etahi atu whiringa whakamanatanga tuku matua pango. Ko te tau kua tautapahia i te wa o te tatūnga ratonga whakarato kī pango e tohu ana i nga rerenga whirihoranga whakarato matua pango.
Tuhipoka: He maha nga taputapu e tohu ana ki te rere whirihoranga ratonga whakarato matua pango ano.

bkp_tls_ca_cert

E hiahiatia ana

Ko te tiwhikete TLS pakiaka i whakamahia hei tautuhi i nga ratonga whakarato matua pango ki te Intel Quartus Prime Programmer (Programmer). Ko tetahi Mana Tiwhikete pono mo te tauira ratonga whakarato matua pango ka whakaputa i tenei tiwhikete.
Ki te whakahaere koe i te Kaihōtaka i runga rorohiko me te punaha whakahaere Microsoft® Windows® (Windows), me whakauru koe i tenei tiwhikete ki te toa tiwhikete Windows.

bkp_tls_prog_cert

E hiahiatia ana

He tiwhikete i hangaia mo te tauira o te Kaitakataka whakawhiwhi matua pango (BKP Programmer). Koinei te tiwhikete kiritaki https i whakamahia ki te tautuhi i tenei tauira kaihōtaka BKP
haere tonu…

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 44

Tuku Urupare

4. Whakarato Pūrere 683823 | 2023.05.23

Ingoa Kōwhiringa

Momo

bkp_tls_prog_key

E hiahiatia ana

bkp_tls_prog_key_pass Kōwhiringa

bkp_proxy_address bkp_proxy_user bkp_proxy_password

Kōwhiringa Kōwhiringa Kōwhiringa

Whakaahuatanga
ki te ratonga whakarato matua pango. Me whakauru me te whakamana i tenei tiwhikete ki roto i te ratonga whakarato matua pango i mua i te tiimata i te waahi whakawhiwhi ki te pango pango. Mena kei te whakahaere koe i te Kaihōtaka i runga Windows, kaore tenei whiringa i te waatea. I tenei take, kei roto i te bkp_tls_prog_key tenei tiwhikete.
Ko te kī tūmataiti e hāngai ana ki te tiwhikete BKP Programmer. Ka whakamanahia e te matua te tuakiri o te tauira BKP Programmer ki te ratonga whakarato matua pango. Mena kei te whakahaere koe i te Kaihanga Papatono i runga Windows, ko te .pfx file ka whakakotahi i te tiwhikete bkp_tls_prog_cert me te kī tūmataiti. Ko te kōwhiringa bkp_tlx_prog_key ka tukuna te .pfx file i roto i te bkp_options.txt file.
Ko te kupuhipa mo te kī tūmataiti bkp_tls_prog_key. Kaore e hiahiatia ana i roto i nga waahanga whirihoranga whakarato matua pango (bkp_options.txt) kuputuhi file.
Ka whakapūtā te tūmau takawaenga URL wāhi noho.
Ka whakapūtā te ingoa kaiwhakamahi tūmau takawaenga.
Ka tohua te kupuhipa motuhēhēnga takawaenga.

4.10. Te Hurihia te Kī Putake o te Kaipupuri, nga Tiwhikete AES Root Key, me te Fuse files ki a Jam STAPL File Hōputu

Ka taea e koe te whakamahi i te quartus_pfg tono raina whakahau hei huri i te .qky, te matua AES .ccert, me te .fuse files ki te Hōputu Jam STAPL File (.jam) me te Hōputu Waehere Paita Jam File (.jbc). Ka taea e koe te whakamahi i enei files ki te hōtaka Intel FPGAs te whakamahi i te Jam STAPL Player me te Jam STAPL Byte-Code Player, ia.

He maha nga mahi kei roto i te .jam kotahi, te .jbc ranei, tae atu ki te whirihoranga whakaahua me te papatono kaiawhina firmware, te tirotiro patea, me te manatoko o te kaupapa matua me te whakakorikori.

Tupato:

Ina huri koe i te matua matua AES .ccert file ki te whakatakotoranga .jam, te .jam file kei roto te kī AES i roto i te kupu tuhi engari he ahua puru. No reira, me tiaki e koe te .jam file i te wa e penapena ana te matua AES. Ka taea e koe tenei ma te whakarato i te matua AES i roto i te taiao haumaru.

Anei nga exampte iti o nga whakahau huringa quartus_pfg:

quartus_pfg -c -o helper_device=AGFB014R24A “root0.qky;root1.qky;root2.qky” RootKey.jam quartus_pfg -c -o helper_device=AGFB014R24A “root0.qky;root1.qky.qky;root2.qypky” c -o helper_device=AGFB014R24A aes.ccert aes_ccert.jam quartus_pfg -c -o kaiawhina_device=AGFB014R24A aes.ccert aes_ccert.jbc quartus_pfg -c -o helper_device=AGFB014R24A aes.ccert aes_ccert.jbc quartus_pfg -c -o helper_device=AGFB014. er_device=AGFB24RXNUMXA tautuhinga. tautuhinga fuse_fuse.jbc

Mo etahi atu korero mo te whakamahi i te Jam STAPL Player mo te hotaka taputapu tirohia AN 425: Te Whakamahi i te Whakataunga-Raina Jam STAPL Solution mo te Papatonotanga Pūrere.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 45

4. Whakarato Pūrere 683823 | 2023.05.23
Whakahaerehia nga whakahau e whai ake nei ki te whakamaarama i te kii a te rangatira me te matua whakamunatanga AES:
//Hei utaina te awaawa kaiawhina ki te FPGA. // Ko te awaawa kaiawhina kei roto ko te whakarato firmware quartus_jli -c 1 -a WHAKAARO RootKey.jam
//Hei whakahōtaka i te kī tūmatanui pakiaka rangatira ki roto mariko eFuses quartus_jli -c 1 -a PUBKEY_PROGRAM RootKey.jam
//Hei whakahoahoa te matua matua matua matua ki roto eFuses quartus_jli -c 1 -a PUBKEY_PROGRAM -e DO_UNI_ACT_DO_EFUSES_FLAG RootKey.jam
//Hei whakahoahoa te matua PR rangatira pakiaka ki roto i te mariko eFuses quartus_jli -c 1 -a PUBKEY_PROGRAM -e DO_UNI_ACT_DO_PR_PUBKEY_FLAG pr_rootkey.jam
//Hei whakahoahoa te matua PR rangatira pakiaka ki roto ki te tinana eFuses quartus_jli -c 1 -a PUBKEY_PROGRAM -e DO_UNI_ACT_DO_PR_PUBKEY_FLAG -e DO_UNI_ACT_DO_EFUSES_FLAG pr_rootkey.jam
//Hei whakarite i te matua whakamunatanga AES CCERT ki BBRAM quartus_jli -c 1 -a CCERT_PROGRAM EncKeyBBRAM.jam
//Hei whakahōtaka i te kī whakamunatanga AES CCERT ki te tinana eFuses quartus_jli -c 1 -a CCERT_PROGRAM -e DO_UNI_ACT_DO_EFUSES_FLAG EncKeyEFuse.jam
Nga korero e pa ana AN 425: Te Whakamahi i te Whakataunga-Raina Jam STAPL Solution mo te Papatonotanga Pūrere

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 46

Tuku Urupare

683823 | 2023.05.23 Tuku Urupare

Āhuatanga Arā Atu Anō

5.1. Whakaaetanga Patuiro Haumaru
Hei whakaahei i te Whakaaetanga Patuiro Haumaru, me whakaputa e te rangatira patuiro he takirua matua motuhēhēnga me te whakamahi i te Intel Quartus Prime Pro Programmer ki te whakaputa korero taputapu. file mo te taputapu e whakahaere ana i te ahua patuiro:
quartus_pgm -c 1 -mjtag -o “ei;device_info.txt;AGFB014R24A” –dev_info
Ka whakamahia e te rangatira o te taputapu te taputapu quartus_sign, te whakatinanatanga tohutoro ranei ki te taapiri i tetahi urunga matua whanui here ki tetahi mekameka haina mo nga mahi patuiro ma te whakamahi i te kii whanui mai i te rangatira patuiro, nga whakaaetanga e tika ana, te tuhinga korero mo te taputapu. file, me etahi atu here e pa ana:
quartus_sign –family=agilex –operation=append_key –previous_pem=debug_chain_private.pem –previous_qky=debug_chain.qky –permission=0x6 –cancel=1 –dev_info=device_info.txt –restriction=”1,2,17,18″ debug_authorization_public_key.pem secure_debug_auth_chain.qky
Ka tukuna e te rangatira o te taputapu te mekameka waitohu katoa ki te rangatira patuiro, e whakamahi ana i te mekameka waitohu me tana taviri motuhake hei haina i te ahua patuiro:
quartus_sign –family=agilex –operation=sign –qky=secure_debug_auth_chain.qky –pem=debug_authorization_private_key.pem unsigned_debug_design.rbf authorized_debug_design.rbf
Ka taea e koe te whakamahi i te whakahau quartus_pfg ki te tirotiro i te mekameka waitohu o ia wahanga o tenei awa moka patuiro haumaru kua hainatia penei:
quartus_pfg –check_integrity authorized_debug_design.rbf
Ko te putanga o tenei whakahau ka ta i nga uara here 1,2,17,18 o te kii a te iwi i whakamahia hei whakaputa i te awa moka kua hainatia.
Ka taea e te rangatira patuiro te whakarite i te hoahoa patuiro kua whakamanahia:
quartus_pgm -c 1 -mjtag -o “p;authorized_debug_design.rbf”
Ka taea e te rangatira o te taputapu te whakakore i te whakamanatanga patuiro haumaru ma te whakakore i te TT whakakorenga matua kua tohua i roto i te mekameka hainatanga whakamana patuiro haumaru.
5.2. Tiwhikete Patuiro HPS
Whakahohehia te urunga mana anake ki te tauranga urunga patuiro HPS (DAP) ma JTAG he maha nga waahanga atanga:

ISO 9001:2015 Kua Rehitatia

5. Ahuatanga Ake 683823 | 2023.05.23
1. Pāwhiritia te Intel Quartus Prime software Taumahi tahua ka kowhiri i te ripa Whirihoranga Pūrere Pūrere me nga Kōwhiringa Pin.
2. I roto i te ripa Whirihoranga, whakaaheitia te tauranga urunga patuiro HPS (DAP) ma te kowhiri i nga HPS Pins, SDM Pins ranei mai i te tahua takaiho, me te whakarite kia kore te pouakataki Whakaaetia te patuiro HPS me te kore tiwhikete.
Whakaahua 14. Whakaritea he HPS, SDM Pin ranei mo te HPS DAP

Tauranga urunga patuiro HPS (DAP)
Ka taea e koe te whakarite i te taumahi i raro iho nei ki te Quartus Prime Settings .qsf file:
set_global_assignment -ingoa HPS_DAP_SPLIT_MODE “SDM PINS”
3. Whakahiatohia me te utaina te hoahoa me enei tautuhinga. 4. Waihangahia he mekameka waitohu me nga whakaaetanga tika ki te haina i te patuiro HPS
tiwhikete:
quartus_sign –family=agilex –operation=append_key –previous_pem=root_private.pem –previous_qky=root.qky –permission=0x8 – whakakore=1 –input_pem=hps_debug_cert_public_key.pem hps_debug_cert_sign_chain.
5. Tonoa he tiwhikete patuiro HPS kaore i hainatia mai i te taputapu kei te utaina te hoahoa patuiro:
quartus_pgm -c 1 -mjtag -o “e;unsigned_hps_debug.cert;AGFB014R24A”
6. Waitohua te tiwhikete patuiro HPS kaore i hainatia ma te whakamahi i te taputapu quartus_sign, whakatinanatanga tohutoro ranei me te mekameka waitohu HPS patuiro:
quartus_sign –family=agilex –operation=sign –qky=hps_debug_cert_sign_chain.qky –pem=hps_debug_cert_private_key.pem unsigned_hps_debug.cert signed_hps_debug.cert

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 48

Tuku Urupare

5. Ahuatanga Ake 683823 | 2023.05.23
7. Tukua te tiwhikete patuiro HPS kua hainatia ki te taputapu kia taea ai te uru ki te tauranga uru patu patu HPS (DAP):
quartus_pgm -c 1 -mjtag -o “p;signed_hps_debug.cert”
Ko te tiwhikete patuiro HPS he mana anake mai i te wa i hangaia ai tae noa ki te huringa hiko o muri o te taputapu, tae noa ki te utaina o tetahi momo momo, putanga rereke ranei o te firmware SDM. Me whakaputa e koe, haina, me te hotaka i te tiwhikete patuiro HPS kua hainatia, me te mahi i nga mahi patuiro katoa, i mua i te hiko o te taputapu. Ka taea e koe te whakakore i te tiwhikete patuiro HPS kua hainatia ma te paihikara hiko i te taputapu.
5.3. Whakaaetanga Paerewa
Ka taea e koe te whakaputa whakaaturanga tohutoro tapatahi (.rim) file te whakamahi i te hōtaka file taputapu kaihanga:
quartus_pfg -c kua hainatia_whakamuna_top.rbf top_rim.rim
A pee i enei mahi ki te whakarite i te whakaaturanga o te turanga i roto i to hoahoa: 1. Whakamahia te Intel Quartus Prime Pro Programmer ki te whirihora i to taputapu me te
hoahoa i hanga e koe he whakaaturanga tohutoro tapatahi mo. 2. Whakamahi i te manatoko papaarangi hei whakauru i te taputapu ma te tuku whakahau ki te
SDM mā te pouaka mēra SDM ki te hanga i te tiwhikete ID pūrere me te tiwhikete mārō i runga i te utaina. 3. Whakamahia te Intel Quartus Prime Pro Programmer ki te whirihora ano i to taputapu me te hoahoa. 4. Whakamahia te manatoko o te turanga hei tuku i nga tono ki te SDM ki te tiki i te ID taputapu whakamana, firmware, me nga tiwhikete ingoa ingoa. 5. Whakamahia te manatoko whakamana hei tuku i te tono pouaka mēra SDM kia whiwhi i nga taunakitanga whakamana ka tirohia e te kaitirotiro nga taunakitanga kua whakahokia mai.
Ka taea e koe te whakamahi i to ake ratonga manatoko ma te whakamahi i nga tono pouaka mēra SDM, te whakamahi ranei i te ratonga manatoko whakamana i te papaaho Intel. Mo te roanga atu o nga korero e pa ana ki te raupaparorohiko ratonga manatoko o te papaapapa Intel, te waatea, me nga tuhinga, whakapaa atu ki te Tautoko Intel.
Nga korero e pa ana Intel Agilex 7 Device Family Pin Aratohu Hononga
5.4. Anati-T tinanaamper
Ka taea e koe te anti-t tinanaamper features using the following steps: 1. Te whiriwhiri i te whakautu e hiahiatia ana ki te t kiteaamper hui 2. Te whirihora i te t e hiahiatia anaamper tikanga kimi me tawhā 3. Tae atu ki te anti-tamper IP i roto i to arorau hoahoa hei awhina i te whakahaere anti-tamper
takahanga

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 49

5. Ahuatanga Ake 683823 | 2023.05.23
5.4.1. Anti-Tamper Whakautu
Ka taea e koe te anti-t tinanaamper ma te whiriwhiri i tetahi whakautu mai i te Anti-tampwhakautu: rārangi takaiho i runga i te Pūrere Taumahi me nga Kōwhiringa Pin Security Anti-Tampte ripa. Ma te taunoa, ko te anti-tampkua monokia te whakautu. E rima nga waahanga o te anti-tampkei te waatea te whakautu. Ina whiriwhiria e koe to whakautu e hiahia ana koe, ka whakahohea nga whiringa hei whakaahei i tetahi, neke atu ranei nga tikanga rapunga.
Whakaatu 15. Anti-T wāteaamper Kōwhiringa Whakautu

Ko te taumahi e pa ana ki nga tautuhinga Quartus Prime .gsf file ko enei e whai ake nei:
set_global_assignment -ingoa ANTI_TAMPER_RESPONSE "PORE WHAKAMAHI KAUPAPA KAUPAPA KAUPAPA KAUPAPA ME TE WHAKAMAHI"
Ina taea e koe te anti-tamper whakautu, ka taea e koe te whiriwhiri kia rua nga titi I/O SDM e waatea ana hei whakaputa i te tamper te kitenga takahanga me te mana whakautu ma te whakamahi i te Matapihi Pūrere Taumahi me nga Kōwhiringa Pin Whirihoranga Whirihoranga Kowhiringa Pin.

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 50

Tuku Urupare

5. Ahuatanga Ake 683823 | 2023.05.23
Whakaahua 16. SDM e waatea ana nga I/O Pins mo Tamper Kitenga Takahanga

Ka taea hoki e koe te mahi i nga mahi titi e whai ake nei i roto i nga tautuhinga file: huinga_whakamahinga_ao -ingoa USE_TAMPER_DETECT SDM_IO15 huinga_a-global_assignment -ingoa ANTI_TAMPER_RESPONSE_FAILED SDM_IO16

5.4.2. Anti-Tamper Raputanga

Ka taea e koe takitahi te whakahohe i te auau, te pāmahana, me te voltage kitea nga ahuatanga o te SDM. Ko te kitenga FPGA ka whakawhirinaki ki te whakauru i te Anti-Tamper Lite Intel FPGA IP i roto i to hoahoa.

Tuhipoka:

SDM auau me te voltagetampKo nga tikanga rapunga kei te whakawhirinaki ki nga tohutoro o roto me nga taputapu ine ka taea te rereke puta noa i nga taputapu. E taunaki ana a Intel kia tohuhia e koe te whanonga o tamper tautuhinga rapunga.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 51

5. Ahuatanga Ake 683823 | 2023.05.23
Te auau tampKa mahi te rapunga i runga i te puna karaka whirihoranga. Kia taea ai te auau tamper rapunga, me whakapūtā koe i te kōwhiringa atu i roto i te Oscillator ā-roto i roto i te takaiho puna karaka Whirihoranga i runga i te Pūrere Taumahi me te ripa Kōwhiringa Pin General. Me whakarite e koe kia whakahohea te PTM whirihoranga Whakahaere mai i te pouakataki oscillator o roto i mua i te whakaahei i te auau tamper rapunga. Whakaatu 17. Te tautuhi i te SDM ki te Oscillator o roto
Kia taea ai te auau tamper detection, tīpako i te Whakahohe auau tamper pouakataki rapunga ka tohua te Auautanga e hiahiatia anaamper awhe rapunga mai i te tahua takaiho. Whakaahua 18. Whakahohe i te Auautanga Tamper Raputanga

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 52

Tuku Urupare

5. Ahuatanga Ake 683823 | 2023.05.23
Ka taea e koe te whakahohe i te Auautanga Tamper Rapu ma te mahi i nga huringa e whai ake nei ki te Quartus Prime Settings .qsf file:
huinga_taumahi_ao -ingoa AUTO_RESTART_CONFIGURATION OFF huinga_whakamahinga_ao -ingoa DEVICE_INITIALIZATION_CLOCK OSC_CLK_1_100MHZ huinga_global_assignment -ingoa RUN_CONFIG_CPU_FROM_INT_OSC ON huinga_global_ENABLET -ingoaAMPER_DETECTION ON set_global_assignment -ingoa FREQUENCY_TAMPER_DETECTION_RANGE 35
Kia taea ai te pāmahana tamper detection, tīpako i te Whakahohea te pāmahana tamper pouakataki rapunga ka kowhiria te pāmahana e hiahiatia ana o runga me te rohe o raro i nga mara e rite ana. Ko nga rohe o runga me raro ka kapihia e te taunoa me te awhe pāmahana e pa ana mo te taputapu i tohua i roto i te hoahoa.
Kia taea ai te voltagetamper rapunga, ka tohua e koe tetahi, e rua ranei o te Enable VCCL voltagetamper detection ranei Whakahohea VCCL_SDM voltagetamper rapunga pouakataki ka kowhiri i te Voltagetamper detection trigger percentage i roto i te mara e rite ana.
Whakaatu 19. Whakamana Voltagme Tamper Raputanga

Ka taea e koe te whakahohe Voltagme Tamper Raputanga ma te tohu i nga taumahi e whai ake nei i roto i te .qsf file:
set_global_assignment -ingoa ENABLE_TEMPERATURE_TAMPER_DETECTION ON set_global_assignment -ingoa TEMPERATURE_TAMPER_UPPER_BOUND 100 huinga_whakamahinga_ao -ingoa ENABLE_VCCL_VOLTAGE_TAMPER_DETECTION ON set_global_assignment -ingoa ENABLE_VCCL_SDM_VOLTAGE_TAMPER_DETECTION ON
5.4.3. Anti-Tamper Lite Intel FPGA IP
Ko te Anti-Tamper Lite Intel FPGA IP, e wātea ana i roto i te putumōhio IP i roto i te rorohiko Intel Quartus Prime Pro Edition, e whakahaere ana i nga korero takirua i waenga i to hoahoa me te SDM mo te tamper kaupapa.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 53

Whakaahua 20. Anti-Tamper Lite Intel FPGA IP

5. Ahuatanga Ake 683823 | 2023.05.23

Ka whakaratohia e te IP nga tohu e whai ake nei ka hono koe ki to hoahoa ina hiahiatia:

Ripanga 5.

Anti-Tamper Lite Intel FPGA IP I/O Tohu

Ingoa Tohu

Te aronga

Whakaahuatanga

gpo_sdm_at_event gpi_fpga_at_event

Putanga Whakauru

Tohu SDM ki te arorau papanga FPGA kua kitea e tetahi SDMamper hui. Ko te arorau FPGA he tata ki te 5ms ki te mahi horoi e hiahiatia ana me te whakautu ki te SDM ma te gpi_fpga_at_response_done me te gpi_fpga_at_zeroization_done. Ka haere tonu te SDM me te tamper nga mahi whakautu i te wa e kii ana te gpi_fpga_at_response_done, i muri ranei i te kore whakautu i te wa i whakaritea.
FPGA haukotia ki SDM i hangaia e koe anti-tampKua kitea te ara iahiko rapunga iamper hui me te SDM tampme whakaoho te whakautu.

gpi_fpga_i_whakautu_mahi

Whakauru

Ka haukotia a FPGA ki a SDM kua mahia e te arorau FPGA te horoi e hiahiatia ana.

gpi_fpga_at_zeroization_d kotahi

Whakauru

Ko te tohu FPGA ki te SDM kua oti i te arorau FPGA te whakakore i nga raraunga hoahoa. Ko tenei tohu he sampka arahina i te wa e kii ana te gpi_fpga_at_response_done.

5.4.3.1. Tukua nga korero

Ka huri te kaupapa whakaputa IP (XYZ) mai i tetahi putanga rorohiko ki tetahi atu. He huringa ki:
· E tohu ana te X i te whakahounga nui o te IP. Mena ka whakahou koe i to rorohiko Intel Quartus Prime, me whakahou e koe te IP.
· E tohu ana te IP kei roto nga ahuatanga hou. Whakahouhia to IP ki te whakauru i enei ahuatanga hou.
· Ka tohu a Z kei roto i te IP nga huringa iti. Whakahoutia to IP ki te whakauru i enei huringa.

Ripanga 6.

Anti-Tamper Lite Intel FPGA IP Tuku korero

Putanga IP

Tūemi

Whakaahuatanga 20.1.0

Intel Quartus Prime Putanga

21.2

Te Ra Whakaputa

2021.06.21

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 54

Tuku Urupare

5. Ahuatanga Ake 683823 | 2023.05.23
5.5. Te whakamahi i nga waahanga haumarutanga hoahoa me te whakahōu Pūnaha Mamao
Ko te Whakahou Pūnaha Mamao (RSU) he ahuatanga Intel Agilex 7 FPGAs e awhina ana ki te whakahou i te whirihoranga. files i roto i te ara pakari. He hototahi te RSU ki nga ahuatanga haumarutanga hoahoa penei i te motuhēhēnga, te waitohu-a-ringa, me te whakamunatanga awaawa na te mea kaore te RSU e whakawhirinaki ki nga kaupapa hoahoa o nga awaawa whirihoranga.
Hanga RSU Images ki .sof Files
Mena kei te rongoa koe i nga taviri motuhake ki to rohe filepūnaha, ka taea e koe te whakaputa whakaahua RSU me nga ahuatanga haumaru hoahoa ma te whakamahi i te rerenga ngawari me te .sof files hei whakaurunga. Hei whakaputa whakaahua RSU me te .sof file, ka whai pea koe i nga tohutohu kei te Wāhanga Whakaputa Atahanga Whakahou Pūnaha Mamao Files Te whakamahi i te Papatonotanga File Kaihanga o te Aratohu Kaiwhakamahi Whirihoranga Intel Agilex 7. Mo ia .sof file kua tohua ki te Whakauru Files ripa, pāwhiritia te pātene Āhuatanga… ka whakapūtāhia ngā tautuhinga me ngā kī e tika ana mō ngā taputapu hainatanga me te whakamunatanga. Te hōtaka file Ko te taputapu kaihanga ka haina aunoa me te whakamuna i nga whakaahua wheketere me nga tono i te wa e hanga ana te kaupapa RSU files.
Hei rereke, mena kei te rongoa koe i nga taviri tūmataiti ki roto i te HSM, me whakamahi koe i te taputapu quartus_sign ka whakamahi .rbf files. Ko te toenga o tenei waahanga e whakaatu ana i nga huringa o te rere ki te whakaputa whakaahua RSU me te .rbf files hei whakaurunga. Me whakamuna me te haina i te whakatakotoranga .rbf files i mua i te kowhiri i a raatau hei whakaurunga files mo nga whakaahua RSU; heoi, ko nga korero whawhai RSU file kaua e whakamunatia, me haina anake. Te Papatonotanga File Kaore te Kaihanga e tautoko i te whakarereke i nga ahuatanga o te whakatakotoranga .rbf files.
Ko te ex e whai ake neiampE whakaatu ana nga tauira i nga whakarereketanga e tika ana ki nga whakahau i te Wāhanga Hanga Atahanga Whakahou Pūnaha Mamao Files Te whakamahi i te Papatonotanga File Kaihanga o te Aratohu Kaiwhakamahi Whirihoranga Intel Agilex 7.
Te whakaputa i te Atahanga RSU Tuatahi Ma te whakamahi .rbf Files: Whakarerekē Whakahau
Mai i te Hanga i te Whakaahua RSU Tuatahi Ma te whakamahi i te .rbf Files te wahanga, whakarereketia nga whakahau i te Hipanga 1. kia taea ai nga ahuatanga haumarutanga hoahoa ki te hiahia ma te whakamahi i nga tohutohu mai i nga waahanga o mua o tenei tuhinga.
Mo te exampNa, ka tohua e koe he firmware kua hainatia file mena kei te whakamahi koe i te whakamunatanga whakamunatanga, whakamahia te taputapu whakamunatanga Quartus hei whakamuna i ia .rbf file, ka mutu te whakamahi i te taputapu quartus_sign ki te haina ia ia file.
I te taahiraa 2, ki te mea kua whakahohea e koe te waitohu-a-rorohiko, me whakamahi koe i tetahi atu waahanga hei hanga i te boot .rbf mai i te ahua o te wheketere. file:
quartus_pfg -c factory.sof boot.rbf -o rsu_boot=ON -o fw_source=signed_agilex.zip
I muri i to waihanga i te korero whawhai .rbf file, whakamahia te taputapu quartus_sign ki te haina i te .rbf file. Kaua e whakamuna te korero whawhai .rbf file.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 55

5. Ahuatanga Ake 683823 | 2023.05.23
Te Hanga Atahanga Taupānga: Whakarerekē Whakahau
Hei whakaputa i tetahi ahua tono me nga ahuatanga haumarutanga hoahoa, ka whakarereketia e koe te whakahau i roto i te Waihanga Atahanga Taupānga ki te whakamahi i te .rbf me nga ahuatanga haumarutanga hoahoa kua whakahohea, tae atu ki te miihini haina-tahi mena ka hiahiatia, hei utu mo te tono taketake .sof file:
quartus_pfg -c cosigned_fw_signed_encrypted_application.rbf secured_rsu_application.rpd -o mode=ASX4 -o bitswap=ON
Te Hanga Atahanga Wheketere Whakahou: Whakarerekē Whakahau
I muri i to waihanga i te korero whawhai .rbf file, ka whakamahi koe i te taputapu quartus_sign ki te haina i te .rbf file. Kaua e whakamuna te korero whawhai .rbf file.
Hei whakaputa i te ahua whakahōu wheketere RSU, ka whakarerekēhia e koe te whakahau mai i te Whakaputa Atahanga Whakahou Wheketere hei whakamahi i te .rbf file me nga ahuatanga haumarutanga hoahoa kua whakahohea me te taapiri i te whiringa hei tohu i te whakamahinga o te firmware i hainatia tahi:
quartus_pfg -c cosigned_fw_signed_encrypted_factory.rbf secured_rsu_factory_update.rpd -o mode=ASX4 -o bitswap=ON -o rsu_upgrade=ON -o fw_source=signed_agilex.zip
Nga korero e pa ana Intel Agilex 7 Aratohu Kaiwhakamahi Whirihoranga
5.6. Nga Ratonga Tirohanga SDM
Ko te SDM i runga i nga taputapu Intel Agilex 7 e whakarato ana i nga ratonga taatai ma te arorau papanga FPGA, ma te HPS ranei e tono ma te atanga pouaka pouaka SDM. Mo etahi atu korero mo nga whakahau pouakameera me nga whakatakotoranga raraunga mo nga ratonga kiripiri SDM katoa, tirohia te Tāpiritanga B i roto i te Tikanga Haumarutanga mo nga Intel FPGAs me te Aratohu Kaiwhakamahi ASICs Structured.
Ki te uru atu ki te atanga pouaka mēra SDM ki te arorau papanga FPGA mo nga ratonga cryptographic SDM, me whakamohio e koe te Kaitono Pouaka Pouaka Intel FPGA IP ki to hoahoa.
Ko te waehere tohutoro ki te uru atu ki te atanga pouaka pouaka SDM mai i te HPS kei roto i te waehere ATF me te Linux i whakaratohia e Intel.
Ko nga korero e pa ana ki te Kaitono Kaitono Intel FPGA IP Aratohu Kaiwhakamahi
5.6.1. Kaihoko Whakamana Whakaaetanga
Ka whakarato a Intel i te whakatinanatanga tohutoro mo te rorohiko HPS e whakamahi ana i te ahuatanga whakaoho kua whakamanahia e te kaihoko ki te whakamotuhēhē i te rorohiko whawhai HPS mai i te s tuatahi.tage boot loader ki te pata Linux.
Nga korero e pa ana a Intel Agilex 7 SoC Secure Boot Demo Design

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 56

Tuku Urupare

5. Ahuatanga Ake 683823 | 2023.05.23
5.6.2. Ratonga Ahanoa Raraunga Haumaru
Ka tukuna e koe nga whakahau ma te pouaka mēra SDM hei mahi whakamunatanga ahanoa SDOS me te wetemuna. Ka taea e koe te whakamahi i te waahanga SDOS i muri i te whakarato i te matua matua SDOS.
Ko nga korero e pa ana ki te Raraunga Haumaru Ahanoa Raraunga Raraunga Raraunga Whakarato Putakea ki te wharangi 30
5.6.3. SDM Cryptographic Primitive Ratonga
Ka tukuna e koe nga whakahau ma roto i te pouaka mēra SDM ki te timata i nga mahi ratonga tuuturu SDM cryptographic primitive. Ko etahi o nga ratonga tuuturu maataarangi e hiahia ana kia nui ake nga raraunga ki te whakawhiti ki a mai i te SDM kaore e taea e te atanga pouakameera te whakaae. I enei ahuatanga, ka huri te whakahau o te whakatakotoranga hei whakarato tohutohu ki nga raraunga kei roto i te mahara. I tua atu, me whakarereke e koe te whakamohiotanga o te Kiritaki Pouaka Pouaka Intel FPGA IP ki te whakamahi i nga ratonga tuuturu SDM mai i te arorau papanga FPGA. Me whakarite ano e koe te tawhā Whakahohe Ratonga Crypto ki te 1 me te hono i te atanga kaikokiri AXI katahi ano ka kitea ki tetahi mahara i roto i to hoahoa.
Whakaatu 21. Te Whakahohenga SDM Cryptographic Services i roto i te Pouaka Pouaka Kiritaki Intel FPGA IP

5.7. Tautuhinga Haumarutanga Bitstream (FM/S10)
Ko nga whiringa Haumarutanga Bitstream FPGA he kohinga kaupapa here e aukati ana i te waahanga kua tohua, te aratau mahi ranei i roto i te waa kua tautuhia.
Ko nga whiringa Haumarutanga Bitstream ko nga haki i whakatakotoria e koe ki te rorohiko Intel Quartus Prime Pro Edition. Ka kape aunoatia enei haki ki nga awa moka whirihoranga.
Ka taea e koe te whakamana i nga whiringa haumarutanga i runga i tetahi taputapu ma te whakamahi i te tautuhinga haumarutanga eFuse.
Hei whakamahi i nga tautuhinga haumarutanga i roto i te awa bitstream whirihoranga, i nga taputapu eFuses ranei, me whakaahei koe i te waahanga motuhēhēnga.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 57

5. Ahuatanga Ake 683823 | 2023.05.23
5.7.1. Te Kowhiri me te Whakahohe i nga Kōwhiringa Haumarutanga
Hei whiriwhiri me te whakahohe i nga whiringa haumarutanga, me penei: Mai i te tahua Taumahi, tohua te Pūrere Pūrere me nga Kōwhiringa Pin Haumarutanga etahi atu Kōwhiringa… Whakaahua 22. Te Kowhiri me te Whakahohe i nga Kōwhiringa Haumarutanga

Na ka kowhiri i nga uara mai i nga rarangi taka-iho mo nga whiringa haumaru e hiahia ana koe ki te whakahohe pera i te whakaaturanga e whai ake neiample:
Whakaahua 23. Te Kowhiringa Uara mo nga Kōwhiringa Haumarutanga

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 58

Tuku Urupare

5. Ahuatanga Ake 683823 | 2023.05.23
Ko nga huringa e whai ake nei i roto i te Quartus Prime Settings .qsf file:
set_global_assignment -ingoa SECU_OPTION_DISABLE_JTAG “KEI TE CHECK” huinga_a-ao_taumahi -ingoa SECU_OPTION_FORCE_ENCRYPTION_KEY_UPDATE “ON STICKY” huinga_global_assignment -ingoa SECU_OPTION_FORCE_SDM_CLOCK_TO_INT_OSC ON huinga_global_assignment -ingoa SECU_OPTION_DUAL_assignmentF -ingoa SECU_OPTION_LOCK_SECURITY_EFUSES ON set_global_assignment -ingoa SECU_OPTION_DISABLE_HPS_DEBUG ON set_global_assignment -ingoa SECU_OPTION_DISABLE_ENCRYPTION_KEY_IN_EFUSES ON set_global_assignment -ingoa SECU_OPTION_DISABLE_ENCRYPTION_KEY_IN_EFUSES ON set_global_assignment -ingoa SECU_OPTION_DISABLE_ENCRYPTION_KEY_IN_EFUSES ON set_global_assignment -ingoa SECU_OPTION_DISABLE_ENCRYPTION_KEY_ON_assignmentingingoa SECU_OPTION_DISABLE_ENCRYPTION_KEY_IN_BBRAM ON set_global_assignment -ingoa SECU_OPTION_DISABLE_PUF_WRAPPED_ENCRYPTION_KEY ON

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 59

683823 | 2023.05.23 Tuku Urupare

Raparongoā

Ko tenei upoko e whakaatu ana i nga hapa noa me nga karere whakatupato ka tupono pea koe i a koe e ngana ana ki te whakamahi i nga waahanga haumarutanga me nga tikanga hei whakatau.
6.1. Te whakamahi i nga Whakahau Quartus i roto i te Hapa Taiao Windows
Hapa quartus_pgm: tono kaore i kitea Whakaahuatanga Ka whakaatu tenei hapa i te wa e ngana ana ki te whakamahi i nga tono Quartus i roto i te NIOS II Shell i roto i te taiao Windows ma te whakamahi i te WSL. Whakatau Ka mahi tenei whakahau i te taiao Linux; Mo nga kaihautu Windows, whakamahia te whakahau e whai ake nei: quartus_pgm.exe -h Waihoki, hoatu te wetereo ano ki etahi atu whakahau Quartus Prime penei i te quartus_pfg, quartus_sign, quartus_encrypt i roto i etahi atu whakahau.

ISO 9001:2015 Kua Rehitatia

6. Raparongoā 683823 | 2023.05.23

6.2. Te Waihanga Whakatupato Matua Motuhake

Whakatupato:

Ko te kupuhipa kua tohua e kiia ana he haumaru. E taunaki ana a Intel kia 13 nga tohu o te kupuhipa kia whakamahia. Ka tūtohu koe ki te huri i te kupuhipa ma te whakamahi i te OpenSSL executable.

openssl ec -in -waho -ae256

Whakaahuatanga
E pa ana tenei whakatupato ki te kaha o te kupuhipa me nga whakaaturanga i te wa e ngana ana ki te whakaputa i tetahi kii motuhake ma te tuku i nga whakahau e whai ake nei:

quartus_sign –family=agilex –operation=make_private_pem –curve=secp3841 root.pem

Whakataunga Whakamahia te openssl executable ki te tautuhi i tetahi kupuhipa roa ake, ka kaha ake.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 61

6. Raparongoā 683823 | 2023.05.23
6.3. Te taapiri i tetahi Kī Waitohu ki te Hapa Kaupapa Quartus
Hapa…File kei roto nga korero matua matua…
Whakaahuatanga
Whai muri i te taapiri i te taviri hainatanga .qky file ki te kaupapa Quartus, me whakaemi ano koe i te .sof file. Ina taapiri koe i tenei .sof kua whakahoutia file ki te taputapu kua tohua ma te whakamahi i te Quartus Programmer, ko te karere hapa e whai ake nei e tohu ana ko te file kei roto nga korero matua matua:
I rahua te taapirifile-ara-ingoa> ki te Kaihōtaka. Ko te file kei roto nga korero matua matua (.qky). Heoi, karekau a Programmer e tautoko i te waahanga hainatanga awaawa. Ka taea e koe te whakamahi Papatonotanga File Kaihanga hei huri i te file ki te Raw Binary kua hainatia file (.rbf) mo te whirihoranga.
Whakatau
Whakamahia te Quartus Papatonotanga file generator ki te huri i te file ki te Raw Binary kua hainatia File .rbf mo te whirihoranga.
Ko nga korero e pa ana ki te Waitohu Whirihoranga Bitstream Ma te whakamahi i te quartus_sign Command i te wharangi 13

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 62

Tuku Urupare

6. Raparongoā 683823 | 2023.05.23
6.4. Te whakaputa Quartus Prime Programming File Kore i angitu
Hapa
Hapa (20353): X o te kī tūmatanui mai i QKY karekau e taurite ki te kī tūmataiti mai i PEM file.
Hapa (20352): I rahua te haina i te awa moka ma te tuhi python agilex_sign.py.
Hapa: Quartus Prime Papatonotanga File Kore i angitu te Kaihanga.
Whakamārama Mena ka ngana koe ki te haina i te awa bitstream whirihoranga ma te whakamahi i te taviri .pem tika file he .pem ranei file e kore e ōrite ki te .qky tāpiri ki te kaupapa, te whakaatu i runga ake hapa noa. Whakataunga Me mohio kei te whakamahi koe i te taviri tūmataiti tika .pem hei haina i te awa bit.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 63

6. Raparongoā 683823 | 2023.05.23
6.5. Nga Hapa Tohenga Kaore i Mohiotia
Hapa
Hapa (23028): Tohenga kore mohio "ûc". Tirohia te –awhina mo nga tohenga ture.
Hapa (213008): Ko te aho kōwhiringa whakahōtaka "ûp" he ture. Tirohia te -awhina mo nga whakatakotoranga whiringa hotaka ture.
Whakaahuatanga Mena ka kape koe ka whakapiri i nga whiringa raina-whakahau mai i te .pdf file i roto i te Windows NIOS II Shell, ka tupono pea koe ki nga hapa tohenga Kaore i te mohiotia penei i runga ake nei. Whakatau I roto i enei ahuatanga, ka taea e koe te whakauru a-ringa i nga whakahau, kaua ki te whakapiri mai i te papatopenga.

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 64

Tuku Urupare

6. Raparongoā 683823 | 2023.05.23
6.6. Kōwhiringa Whakamunatanga Bitstream Kua Monohia
Hapa
Kaore e taea te whakaoti te whakamunatanga mo te file hoahoa .sof na te mea i whakahiatohia me te waahanga whakamunatanga awaawa kua monokia.
Whakaahuatanga Mena ka ngana koe ki te whakamuna i te awa moka ma te GUI, te raina-whakahau ranei i muri i to whakahiato i te kaupapa me te whakakore i te whiringa whakamunatanga awaawa, ka whakakorehia e Quartus te whakahau pera i runga ake nei.
Whakataunga Me whakarite kia whakahiatohia e koe te kaupapa me te kowhiringa whakamunatanga awaawa ka taea ma te GUI, ma te raina-whakahau ranei. Kia taea ai tenei kōwhiringa ki te GUI, me taki koe i te pouakataki mo tenei kōwhiringa.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 65

6. Raparongoā 683823 | 2023.05.23
6.7. Tautuhi Ara Tika ki te Kī
Hapa
Hapa (19516): Kua kitea te Papatonotanga File Hapa tautuhinga kaihanga: Kaore i kitea 'key_file'. Me whakarite te file kei te waahi e tumanakohia ana, ka whakahou ranei i te tautuhinga.sec
Hapa (19516): Kua kitea te Papatonotanga File Hapa tautuhinga kaihanga: Kaore i kitea 'key_file'. Me whakarite te file kei te waahi e tumanakohia ana, kei te whakahou ranei i te tautuhinga.
Whakaahuatanga
Mena kei te whakamahi koe i nga taviri e penapena ana ki te file pūnaha, me whakarite e koe te huarahi tika mo nga taviri e whakamahia ana mo te whakamunatanga awaawa me te hainatanga. Mena ko te Papatonotanga File Kaore e taea e te Kaihanga te kite i te huarahi tika, ka whakaatuhia nga karere hapa o runga.
Whakatau
Tirohia te Quartus Prime Settings .qsf file ki te kimi i nga huarahi tika mo nga ki. Me mohio kei te whakamahi koe i nga ara whanaunga hei utu mo nga huarahi tino.

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 66

Tuku Urupare

6. Raparongoā 683823 | 2023.05.23
6.8. Te whakamahi i te putanga kore tautoko File Momo
Hapa
quartus_pfg -c design.sof putanga_file.ebf -o finalize_operation=ON -o qek_file=ae.qek -o haina=ON -o pem_file=sign_private.pem
Hapa (19511): Putanga kore tautoko file momo (ebf). Whakamahia te "-l" ranei "–list" hei whakaatu i te tautoko file momo korero.
Whakaahuatanga I a koe e whakamahi ana i te Quartus Programming File Kaihanga hei whakaputa i te awa moka whirihoranga whakamunatia me te hainatanga, ka kite pea koe i te hapa o runga mena he putanga kore tautoko file kua tohua te momo. Whakatau Whakamahia te -l, te –rarangi ranei hei kite i te rarangi o nga mea e tautokohia ana file momo.

Tuku Urupare

Intel Agilex® 7 Aratohu Kaiwhakamahi Haumarutanga Pūrere 67

683823 | 2023.05.23 Tuku Urupare
7. Intel Agilex 7 Pūrere Aratohu Kaiwhakamahi Haumarutanga Pūrere
Mo nga putanga hou me o mua o tenei aratohu kaiwhakamahi, tirohia te Aratohu Kaiwhakamahi Haumarutanga Pūrere Intel Agilex 7. Mena karekau he IP, he putanga rorohiko ranei i te raarangi, ka pa te aratohu kaiwhakamahi mo te IP o mua, te putanga rorohiko ranei.

ISO 9001:2015 Kua Rehitatia

683823 | 2023.05.23 Tuku Urupare

8. Hītori Arotake mo te Aratohu Kaiwhakamahi Haumarutanga Pūrere Intel Agilex 7

Tuhinga Putanga 2023.05.23
2022.11.22 2022.04.04 2022.01.20
2021.11.09

Tuhinga / Rauemi

Intel Agilex 7 Haumarutanga Pūrere [pdf] Pukapuka Kaiwhakamahi
Agilex 7 Haumarutanga Pūrere, Agilex 7, Haumarutanga Pūrere, Haumaru

Tohutoro

Pukapuka Kaiwhakamahi

Intel Agilex 7 Haumarutanga Pūrere

Nga korero hua

Nga Tohutohu Whakamahi Hua

Pātai Auau

Ka mutu te Haumarutanga Pūrereview

Motuhēhēnga me te Whakamana

Whakamunatanga AES Bitstream

Whakaritenga Pūrere

Āhuatanga Arā Atu Anō

Raparongoā

Tuhinga / Rauemi

Tohutoro

Waiho he korero

Whakakore whakautu