The client for this case study is a high volume automotive electronics supplier in the Asian Pacific region.
Product requirements included Code Sign and Verify in-dash infotainment CPU software to safe boot and handle firmware updates. The client needed a very low footprint solution, and fast VERIFY speed.
Cypherbridge delivered uCrypt cryptographic library, build optimized for low footprint, meeting MCU functional operations and resource boundaries. We also delivered customized code sign and verify operation APIs.
The end-to-end solution included offline tools to extract and compile RSA PKI certificate public and private key pairs.
Cypherbridge’s design services component integrated and tested solution on target infotainment unit MCU and toolchain. This sign and verify process has broad application in different vertical markets in addition to automotive.
This is typical industry practice using a PKI key pair: offline sign with private key, in-target verify with embedded public key. CSV includes the offline components to generate X509 certificate based key pair, extract the RAW public and private key, then compile the public key to embed in the target.
Product Requirements
- Automotive Electronics OEM required software
Root of Trust - Sign and verify in-dash infotainment software
- Use RSA raw key pair
- Offline sign CPU software
- Use the Boot MPU to verify RSA signature of
infotainment CPU software using public key - Block malware installs
- Optimized efficient low footprint
Solution
- uCrypt library
- CSV Code Sign and Verify Toolkit
- RSA key pair generator & compiler
- Design Services component integrating infotainment
control unit - Solution delivered on Boot MPU