EP4SE360F35I4 Datasheet, PDF(401/432 Page) Altera Corporation – This section provides a complete overview of all features relating to the Stratix IV device family, which is the most architecturlly advanced

English

English German Russian Spanish Italian Polish Chinese Japanese Korean French Portuguese	Language :

EP4SE360F35I4 Datasheet, PDF (401/432 Pages) Altera Corporation – This section provides a complete overview of all features relating to the Stratix IV device family, which is the most architecturlly advanced

◁

Chapter 10: Configuration, Design Security, and Remote System Upgrades in Stratix IV Devices

Design Security

10â65

Stratix IV Security Protection

Stratix IV device designs are protected from copying, reverse engineering, and

tampering using configuration bitstream encryption.

Security Against Copying

The security key is securely stored in the Stratix IV device and cannot be read out

through any interfaces. In addition, as configuration file read-back is not supported in

Stratix IV devices, the design information cannot be copied.

Security Against Reverse Engineering

Reverse engineering from an encrypted configuration file is very difficult and time

consuming because the Stratix IV configuration file formats are proprietary and the

file contains millions of bits which require specific decryption. Reverse engineering

the Stratix IV device is just as difficult because the device is manufactured on the most

advanced 40-nm process technology.

Security Against Tampering

The non-volatile keys are one-time programmable. After the Tamper Protection bit is

set in the key programming file generated by the Quartus II software, the Stratix IV

device can only be configured with configuration files encrypted with the same key.

AES Decryption Block

The main purpose of the AES decryption block is to decrypt the configuration

bitstream prior to entering data decompression or configuration.

Prior to receiving encrypted data, you must enter and store the 256-bit security key in

the device. You can choose between a non-volatile security key and a volatile security

key with battery backup.

The security key is scrambled prior to storing it in the key storage to make it more

difficult for anyone to retrieve the stored key using de-capsulation of the device.

Flexible Security Key Storage

Stratix IV devices support two types of security key programmingâvolatile and

non-volatile keys. Table 10â19 lists the differences between volatile keys and

non-volatile keys.

Table 10â19. Security Key Options (Part 1 of 2)

Options

Volatile Key

Non-Volatile Key

Key programmability

External battery

Key programming method (1)

Reprogrammable and erasable

Required

On-board

One-time programmable

Not required

On and off board

September 2012 Altera Corporation

Stratix IV Device Handbook

Volume 1

▷