Presentation is loading. Please wait.

Presentation is loading. Please wait.

Copyright AIM INFRAROT-MODULE GmbH AIM AIM INFRAROT-MODULE GmbH Security SVGA Image Sensor VISION 2005, Dr. P. Stifter.

Published byMelissa Harvey Modified over 9 years ago

Similar presentations

Presentation on theme: "Copyright AIM INFRAROT-MODULE GmbH AIM AIM INFRAROT-MODULE GmbH Security SVGA Image Sensor VISION 2005, Dr. P. Stifter."— Presentation transcript:

1 Copyright AIM INFRAROT-MODULE GmbH AIM AIM INFRAROT-MODULE GmbH Security SVGA Image Sensor VISION 2005, Dr. P. Stifter

2 Copyright AIM INFRAROT-MODULE GmbH AIM I NTRODUCTION S YSTEM D ESIGN M IXED S IGNAL A UTHENTICATION SPIE 2005, 26,09.05 T ransition Real World Virtual World Some of our real world aspects are mapped into a digital representation and stored in large databases. The digital identity has to be protected ! FR Software

3 Copyright AIM INFRAROT-MODULE GmbH AIM I NTRODUCTION S YSTEM D ESIGN M IXED S IGNAL A UTHENTICATION SPIE 2005, 26,09.05 A pplication Scenario of optical Sensors Ethernet based physical layer with TCP/IP as a transport and routing layer. Sensors capture images, generate sensitive data and transfer data packets over an open and insecure channel to dedicated servers

4 Copyright AIM INFRAROT-MODULE GmbH AIM I NTRODUCTION S YSTEM D ESIGN M IXED S IGNAL A UTHENTICATION SPIE 2005, 26,09.05 S ecure Sensor Design Requirements: Data Authentication Authentication Protocol Cryptographic Checksum (MAC) Cryptographic hardware modules Usage of publicly known and proven algorithms Secret Unique Identifier Key storage Key programming

5 Copyright AIM INFRAROT-MODULE GmbH AIM I NTRODUCTION S YSTEM D ESIGN M IXED S IGNAL A UTHENTICATION SPIE 2005, 26,09.05 S ystem Design large and busy digital core

6 Copyright AIM INFRAROT-MODULE GmbH AIM I NTRODUCTION S YSTEM D ESIGN M IXED S IGNAL A UTHENTICATION SPIE 2005, 26,09.05 F loorplan Problem: CMOS imager is susceptible to various noise sources. Noise level is increased by the activity of the digital core.

7 Copyright AIM INFRAROT-MODULE GmbH AIM I NTRODUCTION S YSTEM D ESIGN M IXED S IGNAL A UTHENTICATION SPIE 2005, 26,09.05 M ixed Signal Design Most prominent noise: FPN Modules on the same substrate Use CDS Separation with multiple guard rings Differential signal lines Large blocking capacitors Signal integrity Stable reference voltages

8 Copyright AIM INFRAROT-MODULE GmbH AIM I NTRODUCTION S YSTEM D ESIGN M IXED S IGNAL A UTHENTICATION SPIE 2005, 26,09.05 K ey Storage Selection between Polysilicon fuses or EEPROM cells D-MatrixPro Poly silicon EEPROM cells Con Simple interfaceExternal programming voltage Not buried under metal layers Burn-through process may damage pixel Buried under shielded metal layer No external access, on- chip charge pump Encapsulation Hardware overhead: controller

9 Copyright AIM INFRAROT-MODULE GmbH AIM I NTRODUCTION S YSTEM D ESIGN M IXED S IGNAL A UTHENTICATION SPIE 2005, 26,09.05 Checksum Authentication O perational Flow

10 Copyright AIM INFRAROT-MODULE GmbH AIM I NTRODUCTION S YSTEM D ESIGN M IXED S IGNAL A UTHENTICATION SPIE 2005, 26,09.05 D ata Protection Data transfer with TCP/IP can be easily manipulated in the context of raw sockets. Application of cryptographic methods (MAC) protects against bit manipulations and faked identities Block cipher E of length n encrypt the message x to the cipher text c with key K of length k.

11 Copyright AIM INFRAROT-MODULE GmbH AIM I NTRODUCTION S YSTEM D ESIGN M IXED S IGNAL A UTHENTICATION SPIE 2005, 26,09.05 D ata Protection Data transfer with TCP/IP can be easily manipulated in the context of raw sockets. Application of cryptographic methods (MAC) protects against bit manipulations and faked identities MacDES (1) Padding (2) Splitting (3) Initial Transformation (4) Iteration (5) Output Transformation

12 Copyright AIM INFRAROT-MODULE GmbH AIM I NTRODUCTION S YSTEM D ESIGN M IXED S IGNAL A UTHENTICATION SPIE 2005, 26,09.05 C onclusion One can obtain real end-point security on open and insecure data channels. On-chip cryptographic module provide real-time encryption and secure key storage. Challenge/Response method give any host in possession of the secret key the assurance of the data origin. Even a single bit manipulation is detectable. On-chip integration provides a high protection level against key recovery attacks.

Download ppt "Copyright AIM INFRAROT-MODULE GmbH AIM AIM INFRAROT-MODULE GmbH Security SVGA Image Sensor VISION 2005, Dr. P. Stifter."

Similar presentations

Security and Privacy over the Internet Chan Hing Wing, Anthony Mphil Yr. 1, CSE, CUHK Oct 19, 1998.

Security and Privacy over the Internet Chan Hing Wing, Anthony Mphil Yr. 1, CSE, CUHK Oct 19, 1998.
ECE454/CS594 Computer and Network Security

ECE454/CS594 Computer and Network Security
Internet Security CSCE 813 IPsec

Internet Security CSCE 813 IPsec
Cryptography Chapter 7 Part 4 Pages 833 to 874. PKI Public Key Infrastructure Framework for Public Key Cryptography and for Secret key exchange.

Cryptography Chapter 7 Part 4 Pages 833 to 874. PKI Public Key Infrastructure Framework for Public Key Cryptography and for Secret key exchange.
SSL Protocol By Oana Dini. Overview Introduction to SSL SSL Architecture SSL Limitations.

SSL Protocol By Oana Dini. Overview Introduction to SSL SSL Architecture SSL Limitations.
SSL CS772 Fall 2011. Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.

SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.
BASIC CRYPTOGRAPHY CONCEPT. Secure Socket Layer (SSL)  SSL was first used by Netscape.  To ensure security of data sent through HTTP, LDAP or POP3.

BASIC CRYPTOGRAPHY CONCEPT. Secure Socket Layer (SSL)  SSL was first used by Netscape.  To ensure security of data sent through HTTP, LDAP or POP3.
CHAPTER 8: SECURITY IN COMPUTER NETWORKS Encryption Encryption Authentication Authentication E-Mail Security E-Mail Security Secure Sockets Layer Secure.

CHAPTER 8: SECURITY IN COMPUTER NETWORKS Encryption Encryption Authentication Authentication Security Security Secure Sockets Layer Secure.
Information Hiding: Watermarking and Steganography

Information Hiding: Watermarking and Steganography
Computer and Network Security Mini Lecture by Milica Barjaktarovic.

Computer and Network Security Mini Lecture by Milica Barjaktarovic.
IPSec: Authentication Header, Encapsulating Security Payload Protocols CSCI 5931 Web Security Edward Murphy.

IPSec: Authentication Header, Encapsulating Security Payload Protocols CSCI 5931 Web Security Edward Murphy.
Digital Signatures and Hash Functions. Digital Signatures.

Digital Signatures and Hash Functions. Digital Signatures.
Security at the Network Layer: IPSec

Security at the Network Layer: IPSec
Chapter 13 IPsec. IPsec (IP Security)  A collection of protocols used to create VPNs  A network layer security protocol providing cryptographic security.

Chapter 13 IPsec. IPsec (IP Security)  A collection of protocols used to create VPNs  A network layer security protocol providing cryptographic security.
ECE 454/CS 594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall.

ECE 454/CS 594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall.
Crypto – chapter 16 - noack Introduction to network stcurity Chapter 16 - Stallings.

Crypto – chapter 16 - noack Introduction to network stcurity Chapter 16 - Stallings.
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.

Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.
Block Ciphers 1 Block Ciphers Block Ciphers 2 Block Ciphers  Modern version of a codebook cipher  In effect, a block cipher algorithm yields a huge.

Block Ciphers 1 Block Ciphers Block Ciphers 2 Block Ciphers  Modern version of a codebook cipher  In effect, a block cipher algorithm yields a huge.
1ISM - © 2010 Houman Younessi Lecture 5 Convener: Houman Younessi 1-860-548-7880 Information Systems Spring 2011.

1ISM - © 2010 Houman Younessi Lecture 5 Convener: Houman Younessi Information Systems Spring 2011.

Similar presentations

Ads by Google