Lattice Semiconductor has introduced two new products aimed at addressing customer challenges related to increasing threats to system security. The company announced the Lattice MachXO5D-NX family of advanced secure control FPGAs, which feature crypto-agile algorithms, hardware root of trust with integrated flash, and fail-safe remote field updates for reliable and secure product lifecycle management. Additionally, Lattice launched the latest version of the Lattice Sentry solution stack, offering new capabilities for customizable FPGA-based platform firmware resiliency (PFR) solutions supporting the new MachXO5D-NX family.Key features of the new low power Lattice MachXO5D-NX FPGAs, based on the Lattice Nexus FPGA platform, include advanced cryptographic agility with security algorithms specified by the Commercial National Security Algorithm (CNSA) Suite for bitstream and user data protection, including AES-256, ECDSA-384/521, SHA2-256/384/512, and RSA 3072/4096. They also offer hardware root of trust with immutable boot ROM, secure dual boot with integrated flash for fail-safe updates, unique device secret (UDS) protecting device identity, side channel attack (SCA) resiliency, integrated non-volatile configuration memory, and up to 57 Mb of configurable user flash memory (UFM) for data storage and management. The FPGAs feature a fully configurable programming interface (SPI, JTAG) locking control to prevent advanced external attacks.
The product lifecycle is made reliable and secure with secure on-chip multi-boot with bitstream encryption and authentication, enabling fail-safe remote field updates, anti-rollback version protection, and revocable root keys to protect against malicious bitstream attacks. The DICE and Lattice SupplyGuard capabilities ensure secure product lifecycle and supply chain management.
The latest version of the Lattice Sentry (v 4.0) solution stack supports NIST SP800-193 compliant PFR solution development for communications, computing, industrial, and automotive applications. It includes multiple QSPI/SPI monitoring with I2C peripheral attack protection demonstration, SPDM and MCTP support for efficient platform management and secure server operations, a new design workspace template reference design enabling PFR 4.0 solution with I3C support, newer crypto algorithms (ECC384/512), and full DC-SCM compatibility. It also offers expanded plug-and-play design tools and reference designs with workspace template, and policy, provisioning, and manifest generator.
The new MachXO5D-NX FPGA family and the latest Sentry solution stack are supported by the latest releases of Lattice Radiant and Lattice Propel design software.
Leave a Reply