IP Catalog
FortiCrypt

AES SX-DPA-FIA IP Core – DPA- and FIA-Resistant Balanced FortiCrypt AES IP Core

Intro

The AES SX-DPA-FIA IP Core is a part of the FortiCrypt product family. It provides a balanced solution with a gate count comparable to unprotected solutions and the same latency and performance that unprotected solutions have, thereby upholding the original AES design goals of high performance and low latency and gate count.

This is a unique solution in the market since it combines protection against SCA and FIA with the same latency and performance as, and a gate count comparable, to unprotected implementations.

The AES SX-DPA-FIA IP Core, as well as all the FortiCrypt products, is based on RAMBAM – the next-generation purely algorithmic, implementation-agnostic protection scheme of AES. It is designed to provide the highest level of protection against side-channel attacks (SCA) and fault injection attacks (FIA), including SIFA.

The RAMBAM protection scheme utilizes masking methods based on finite field arithmetic that implement attack resistance without incurring extra latency costs.

The core protection mechanism was verified using the rigorous Test Vector Leakage Assessment (TVLA) test at 1B traces, both by FortifyIQ and by a third-party Common Criteria lab. Resistance to attacks was validated analytically and on a physical device. The cores are fully synthesizable and do not require custom cells or special place & route handling.

  FortifyIQ  Competitors
High Security
Low Latency
High Performance
Low Power Consumption
Low Gate Count

*We compare only against solutions with uncompromised security 

Deliverables
  • Synthesizable Verilog RTL source code
  • Documentation
  • Testbench
  • SDC constraints for synthesis
  • Technical support and assistance
Tech Specs
  • Part Number

AES SX-DPA-FIA IP Core

  • Short description

DPA- and FIA-resistant balanced FortiCrypt AES IP Core

  • Compliant standard

FIPS-197

  • Provider

FortifyIQ, Inc.

  • Maturity

Silicon proven

  • Availability

Now

Request This Core

Features
  • A wide range of configurations to match the user’s cost/performance target
  • Low latency
  • Passes the rigorous Test Vector Leakage Assessment (TVLA) test at 1B traces
  • Protected against fault injection attacks, including SIFA
  • Tunable protection level
  • Optional embedded internal PRNG for random masking
  • NIST FIPS-197 compliant
  • AES-128/192/256 encryption and decryption
  • Support of all cipher modes of operation
  • Auxiliary key port hidden from software
  • Configurable choice of interfaces
    • Bare cryptographic core
    • AMBA, AXI, or APB
  • Optional input data FIFO
  • External DMA support
  • Fully synthesizable
Benefits
  • Ultra-strong side-channel attack protection (at least 1B traces)
  • Protected against fault injection attacks, including SIFA
  • Highest-level security verified, both by FortifyIQ and by a third-party Common Criteria lab.
  • A purely digital solution, agnostic to the specific implementation (ASIC/FPGA, etc.)
Applications
  • IoT devices
  • Communications
  • Automotive
  • Secure internet protocols (SSL/TLS, IPSec)
  • Content protection (Set-Top Boxes, SoCs)
  • Virtual Private Networks (VPN)
  • Storage, disk encryption

AES XP-DPA-FIA IP Core – DPA- and FIA-Resistant Ultra High Bandwidth FortiCrypt AES IP Core 

Intro

The AES XP-DPA-FIA IP core belongs to the FortiCrypt product family. It is intended for applications that require extremely high performance and implements AES GCM for high-volume authenticated network communications and AES XTS for high-volume storage encryption. The AES XP IP core employs a multi-pipelined architecture with a configurable number of pipelines. In AES GCM, in addition to the protection of AES, it protects the GHASH authentication mechanism.

This is a unique solution in the market since it combines multi-pipelined architecture with protection against SCA and FIA.

The AES XP-DPA-FIA IP Core, as well as all the FortiCrypt products, is based on RAMBAM – the next-generation purely algorithmic, implementation-agnostic protection scheme of AES. It is designed to provide the highest level of protection against side-channel attacks (SCA) and fault injection attacks (FIA), including SIFA.

The RAMBAM protection scheme utilizes masking methods based on finite field arithmetic that implement attack resistance without incurring extra latency costs.

The core protection mechanism was verified using the rigorous Test Vector Leakage Assessment (TVLA) test at 1B traces, both by FortifyIQ and by a third-party Common Criteria lab. Resistance to attacks was validated analytically and on a physical device. The cores are fully synthesizable and do not require custom cells or special place & route handling.

  FortifyIQ*  Competitors
High Security

N/A

Low LatencyN/A
High PerformanceN/A
Low Power ConsumptionN/A
Low Gate CountN/A

*Our solution is unique 

Deliverables
  • Synthesizable Verilog RTL source code
  • Documentation
  • Testbench
  • SDC constraints for synthesis
  • Technical support and assistance
Tech Specs
  • Part Number

AES XP-DPA-FIA IP Core

  • Short description

DPA- and FIA-resistant Ultra High Bandwidth FortiCrypt AES IP core

  • Compliant standard

FIPS-197

  • Provider

FortifyIQ, Inc.

  • Maturity

Silicon proven

  • Availability

Now

Features
  • Ultra-high bandwidth due to multi-pipeline architecture, HUNDREDs Gbps (@500 MHz on a 45nm tech. process)
  • Extensible pipeline architecture
  • Low latency
  • Passes the rigorous Test Vector Leakage Assessment (TVLA) test at 1B traces
  • Protected against fault injection attacks, including SIFA
  • Tunable protection level
  • Optional embedded internal PRNG for random masking
  • NIST FIPS-197 compliant
  • AES-128/192/256 encryption and decryption
  • XTS or GCM modes of operation
  • Auxiliary key port hidden from software
  • Configurable choice of interfaces
    • Bare cryptographic core
    • AMBA, AXI, or APB
  • Optional input data FIFO
  • External DMA support
  • Fully synthesizable
Benefits
  • Ultra-high bandwidth due to multi-pipeline architecture, HUNDREDs Gbps (@500 MHz on a 45nm tech. process)
  • GCM authentication tag protection (patent pending)
  • Ultra-strong side-channel attack protection (at least 1B traces)
  • Protected against fault injection attacks, including SIFA
  • Highest-level security verified, both by FortifyIQ and by a third-party Common Criteria lab.
  • A purely digital solution, agnostic to the specific implementation (ASIC/FPGA, etc.)
  • Storage, disk encryption
Applications
  • Communications
  • Automotive
  • Secure internet protocols (SSL/TLS, IPSec)
  • Content protection (Set-Top Boxes, SoCs)
  • Virtual Private Networks (VPN)
Request This Core

AES ULP-DPA-FIA IP Core – DPA- and FIA-Resistant Ultra Low Power FortiCrypt AES IP Core 

Intro

The AES ULP-DPA-FIA IP core belongs to the FortiCrypt product family. This protected AES IP core provides an extraordinary AES throughput per watt.

This can be an ideal solution for battery-powered devices, which often work in a power-save mode and wake up from time to time for as-short-as-possible periods.

In addition, devices that do massive AES decrypt/encrypt operations can benefit from this IP core, by saving on electricity bills.

This is a unique solution in the market since it consumes significantly less power than other commercially available solutions.

The AES ULP-DPA-FIA IP Core, as well as all the FortiCrypt products, is based on RAMBAM – the next-generation purely algorithmic, implementation-agnostic protection scheme of AES. It is designed to provide the highest level of protection against side-channel attacks (SCA) and fault injection attacks (FIA), including SIFA.

The RAMBAM protection scheme utilizes masking methods based on finite field arithmetic that implement attack resistance without incurring extra latency costs.

The core protection mechanism was verified using the rigorous Test Vector Leakage Assessment (TVLA) test at 1B traces, both by FortifyIQ and by a third-party Common Criteria lab. Resistance to attacks was validated analytically and on a physical device. The cores are fully synthesizable and do not require custom cells or special place & route handling.

  FortifyIQ  Competitors
High Security
Low Latency
High Performance
Low Power Consumption
Low Gate Count
RAM RequiredNot required

* We compare only against solutions with uncompromised security 

Deliverables
  • Synthesizable Verilog RTL source code
  • Documentation
  • Testbench
  • SDC constraints for synthesis
  • Technical support and assistance
Tech Specs
  • Part Number

AES ULP-DPA-FIA IP Core

  • Short description

DPA- and FIA-resistant Ultra Low Power FortiCrypt AES IP core

  • Compliant standard

FIPS-197

  • Provider

FortifyIQ, Inc.

  • Availability

2023, the first quarter

Features
  • Ultra-low power in terms of performance per watt
  • Passes the rigorous Test Vector Leakage Assessment (TVLA) test at 1B traces
  • Protected against fault injection attacks, including SIFA
  • Tunable protection level
  • Optional embedded internal PRNG for random masking
  • NIST FIPS-197 compliant
  • AES-128/192/256 encryption and decryption
  • Support of all cipher modes of operation
  • Auxiliary key port hidden from software
  • Configurable choice of interfaces
    • Bare cryptographic core
    • AMBA, AXI, or APB
  • Optional input data FIFO
  • External DMA support
  • Fully synthesizable
Benefits
  • Ultra-low power in terms of performance per watt
  • Ultra-strong side-channel attack protection (at least 1B traces)
  • Protected against fault injection attacks, including SIFA
  • Highest-level security verified, both by FortifyIQ and by a third-party Common Criteria lab.
  • A purely digital solution, agnostic to the specific implementation (ASIC/FPGA, etc.)
Applications
  • IoT devices
  • Battery-operated devices
  • Communications
  • Automotive
  • Secure internet protocols (SSL/TLS, IPSec)
  • Content protection (Set-Top Boxes, SoCs)
  • Virtual Private Networks (VPN)
  • Storage, disk encryption
Request This Core

AES UC-DPA-FIA IP Core – DPA- and FIA-Resistant Ultra Compact FortiCrypt AES IP Core

Intro

The AES UC-DPA-FIA IP Core belongs to the FortiCrypt product family. Like all the FortiCrypt product family members, this IP provides the highest DPA resistance level, while using a very low number of standard digital gates.

This is a unique solution since its gate count is the lowest in the market (starting from 12K gates).

The AES UC-DPA-FIA IP Core, as well as all the FortiCrypt products, is based on RAMBAM – the next-generation purely algorithmic, implementation-agnostic protection scheme of AES. It is designed to provide the highest level of protection against side-channel attacks (SCA) and fault injection attacks (FIA), including SIFA.

The RAMBAM protection scheme utilizes masking methods based on finite field arithmetic that implement attack resistance without incurring extra latency costs.

The core protection mechanism was verified using the rigorous Test Vector Leakage Assessment (TVLA) test at 1B traces, both by FortifyIQ and by a third-party Common Criteria lab. Resistance to attacks was validated analytically and on a physical device. The cores are fully synthesizable and do not require custom cells or special place & route handling.

  FortifyIQ  Competitors
High Security
Low Latency
High Performance
Low Power Consumption
Low Gate Count

* We compare only against solutions with uncompromised security 

Deliverables
  • Synthesizable Verilog RTL source code
  • Documentation
  • Testbench
  • SDC constraints for synthesis
  • Technical support and assistance
Tech Specs
  • Part Number

AES UC-DPA-FIA IP Core

  • Short description

DPA and FIA-resistant Ultra-Compact FortiCrypt AES IP core

  • Compliant standard

FIPS-197

  • Provider

FortifyIQ, Inc.

  • Maturity

Silicon proven

  • Availability

Now

Features
  • Ultra-compact
  • Ultra-efficient in terms of performance per gate
  • Passes the rigorous Test Vector Leakage Assessment (TVLA) test at 1B traces
  • Protected against fault injection attacks, including SIFA
  • Tunable protection level
  • Optional embedded internal PRNG for random masking
  • NIST FIPS-197 compliant
  • AES-128/192/256 encryption and decryption
  • Support of all cipher modes of operation
  • Auxiliary key port hidden from software
  • Configurable choice of interfaces
    • Bare cryptographic core
    • AMBA, AXI, or APB
  • Optional input data FIFO
  • External DMA support
  • Fully synthesizable
Benefits
  • Ultra-Compact
  • Ultra-efficient in terms of performance per gate
  • Ultra-strong side-channel attack protection (at least 1B traces)
  • Protected against fault injection attacks, including SIFA
  • Highest-level security verified, both by FortifyIQ and by a third-party Common Criteria lab.
  • A purely digital solution, agnostic to the specific implementation (ASIC/FPGA, etc.)
Applications
  • IoT devices
  • Communications
  • Automotive
  • Secure internet protocols (SSL/TLS, IPSec)
  • Content protection (Set-Top Boxes, SoCs)
  • Virtual Private Networks (VPN)
  • Storage, disk encryption
Request This Core

FortiCrypt Library – Advanced DPA- and FIA-Resistant Software Library

Intro

The FortiCrypt software library provides ultra-strong protection against SCA and FIA while preserving exceptional performance enabling encryption/decryption of HD video streams on low-end CPUs. In this aspect, it is a unique solution in the market.

The Forticrypt library implements the AES block cipher in numerous modes of operation with various padding conventions while protecting it against side-channel attacks using the RAMBAM protection scheme. Other block ciphers and other padding conventions can be added to the library. In addition to the library, a command-line interface is available for quick encryption/decryption tasks.

The FortiCrypt software library, as well as all the FortiCrypt products, is based on RAMBAM – the next-generation purely algorithmic, implementation-agnostic protection scheme of AES. It is designed to provide the highest level of protection against side-channel attacks (SCA) and fault injection attacks (FIA), including SIFA.

The RAMBAM protection scheme utilizes masking methods based on finite field arithmetic that implement attack resistance without incurring extra latency costs.

The core protection mechanism was verified using the rigorous Test Vector Leakage Assessment (TVLA) test at 1B traces, both by FortifyIQ and by a third-party Common Criteria lab. Resistance to attacks was validated analytically and on a physical device. The cores are fully synthesizable and do not require custom cells or special place & route handling.

  FortifyIQ  Competitors
High Security
High Performance

* We compare only against solutions with uncompromised security 

Deliverables
  • The folder with the command-line application (optional)
  • The folder with the public header files of the library
  • The folder with the library with which to link
  • The folder with the integration rules for the Cmake build system
  • Technical support and assistance
Tech Specs
  • Part Number

AES-DPA-FIA SW library

  • Short description

Advanced DPA- and FIA-resistant FortiCrypt AES SW library

  • Compliant standard

FIPS-197

  • Provider

FortifyIQ, Inc.

  • Availability

Now

Features
  • Ultra-strong side-channel and SIFA protection at high performance
  • NIST FIPS-197 compliant
  • AES-128/192/256 encryption and decryption
  • Tunable protection level
  • Supports all chaining modes: ECB, CBC, CFB, OFB, CTR, XTS
  • Portable to popular CPUs: ARM, RISC-V, Intel, etc.
Benefits
  • Can fix unprotected/vulnerable HW solutions already in the field
  • Ultra-strong SCA and FIA protection, including SIFA
  • Exceptional performance, enabling encryption/decryption of HD video streams on low-end CPUs
Applications
  • IoT devices
  • Communications
  • Automotive
  • Secure internet protocols (SSL/TLS, IPSec)
  • Content protection (Set-Top Boxes, SoCs)
  • Virtual Private Networks (VPN)
  • Storage, disk encryption
Request Library Access