CN106066970A - A kind of Low dark curient dual processors nuclear safety chip architecture - Google Patents

A kind of Low dark curient dual processors nuclear safety chip architecture Download PDF

Info

Publication number
CN106066970A
CN106066970A CN201610352610.7A CN201610352610A CN106066970A CN 106066970 A CN106066970 A CN 106066970A CN 201610352610 A CN201610352610 A CN 201610352610A CN 106066970 A CN106066970 A CN 106066970A
Authority
CN
China
Prior art keywords
cpu
computational complexity
responsible
low
chip
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
CN201610352610.7A
Other languages
Chinese (zh)
Inventor
陈波涛
范长永
关红波
蒙卡娜
于敦山
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing CEC Huada Electronic Design Co Ltd
Original Assignee
Beijing CEC Huada Electronic Design Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing CEC Huada Electronic Design Co Ltd filed Critical Beijing CEC Huada Electronic Design Co Ltd
Priority to CN201610352610.7A priority Critical patent/CN106066970A/en
Publication of CN106066970A publication Critical patent/CN106066970A/en
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/76Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in application-specific integrated circuits [ASIC] or field-programmable devices, e.g. field-programmable gate arrays [FPGA] or programmable logic devices [PLD]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F1/00Details not covered by groups G06F3/00 - G06F13/00 and G06F21/00
    • G06F1/26Power supply means, e.g. regulation thereof
    • G06F1/32Means for saving power
    • G06F1/3203Power management, i.e. event-based initiation of a power-saving mode
    • G06F1/3234Power saving characterised by the action undertaken
    • G06F1/3243Power saving in microcontroller unit

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Mathematical Physics (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Semiconductor Integrated Circuits (AREA)
  • Power Sources (AREA)

Abstract

The present invention proposes a kind of Low dark curient dual processors nuclear safety chip architecture, and this framework can realize minimizing of secured physical isolation and quiescent dissipation.This framework have employed two cpu subsystems, and a CPU is low performance low-power consumption low logic door number, is used for processing the non-security application such as communication interface;Another one CPU is the high safe CPU of high-performance, is used for providing the high performance cryptographic calculations of high complexity and sensitive information to process contour safety applications.High-performance cpu system logical complexity is higher, and its power supply is gated shutoff to reduce chip entirety electricity leakage power dissipation when chip enters Standby state.

Description

A kind of Low dark curient dual processors nuclear safety chip architecture
Technical field
The present invention proposes a kind of safety chip framework and method for designing that can keep Low dark curient in Standby state, is suitable for In security chip design field.
Background technology
The power consumption of CMOS integrated circuit includes dynamic power consumption and quiescent dissipation, after dynamic power consumption is because N pipe or the unlatching of P pipe The discharge and recharge of load capacitance is caused by power supply.Quiescent dissipation, also known as electricity leakage power dissipation, is that power supply is managed by the N closed or P manages The electricity leakage power dissipation that ground produces.Before chip manufacture technique enters deep submicron process, it is overall that the dynamic power consumption of chip accounts for chip The major part of power consumption, after chip technology enters deep-submicron and Super deep submicron process, chip quiescent dissipation is in overall merit In consumption, proportion gradually rises.According to statistics, in 90nm technique, the dynamic power consumption such as fruit chip unit are is 1, at 65nm Under technique, the dynamic power consumption of unit are reaches 1.4, is up to 2 under 45nm technique;Under 90nm technique, such as fruit chip list It is 1 that plane amasss quiescent dissipation, and under 65nm technique, the quiescent dissipation of unit are is up to 2.5, and will reach under 45nm technique To 6.5.As can be seen here, along with the lifting of integrated circuit design process level, quiescent dissipation will increasingly become low power dissipation design Pay close attention to object.
In safety chip, especially in the safety applications chip such as intelligent card chip of sensitive power consumption, often use such as Chip architecture shown in accompanying drawing 1.Chip includes voltage commutation VR (110), clock oscillator OSC (120), safety sensor (130), randomizer (140) and CPU and crypto-operation system (150) a few major part.External power supply passes through voltage commutation Module provides core voltage for full chip.In accompanying drawing 1 and accompanying drawing 2, heavy black line all represents power line.CPU and crypto-operation system Should process the complicated bigger crypto-operation of computing, communication and instruction that complexity to be processed is minimum resolve.Work as safety chip When completing communication and crypto-operation, needing to enter standby (Standby) state, now chip main power consumption is quiescent dissipation.? When safety chip processing technique level is 90nm, quiescent dissipation does not the most become the obstacle of chip low-power consumption application.And current safety Chip manufacture technique just migrates toward 65nm, 55nm even 40nm, and quiescent dissipation is very important, needs to use new method for designing Ensure safety chip power consumption levels under Standby state.Additionally, safety applications and non-security application are by single CPU Complete, need software system to do the extra security isolation design overall security with guarantee chip, to software design increase Difficulty.
Summary of the invention
The present invention proposes a kind of new dual processors Kernel security chip system framework, as shown in Figure 2.
In the present invention, first the function of safety chip is classified.By crypto-operation service, sensitive information access and The function that the safety requirements such as process are high, computational complexity is big is divided into a class;By low to Communication processing, the instruction safety requirements such as parsing, The function that computational complexity is little is divided into an other class.Two different cpu subsystems are used to realize two class computing and places respectively Reason.Two CPU can only access respective memory resource and register resources.The cpu subsystem of the high complexity of high safety is permissible Targetedly bus system, crypto-operation unit, accumulator system are done special safe design such as mask, encryption, redundancy Inject Deng the anti-leak and fail-safe to ensure safety information and anti-physics intrusive mood is attacked.And the low operation strength of low complex degree Cpu subsystem need not do special safe design.High complexity CPU of high safety and the thorough physics of lower security low complex degree CPU Isolation also ensure that the access rights differentiation of secure resources and minimizes design.
In the present invention, in order to ensure that the safety chip quiescent dissipation when Standby reaches minimum, set at safety chip In meter, have employed power gating technology, the electricity of broken height complexity cpu subsystem can be closed when safety chip enters Standby Source, it is ensured that the source-drain power consumption of this part is 0, such that it is able to be minimized chip entirety electricity leakage power dissipation.And chip is entering During the external communication of row, high complexity cpu system remains powered off or the low power consumpting state of electric power starting, it is ensured that chip when communication Overall power level relatively low to meet the communication merit of special communication power consumption requirements chip such as 14443 non-contact interface safety chip Can be normal.Chip is when carrying out crypto-operation and sensitive information processes, and high complexity cpu subsystem power supply is unlocked, low complexity It is overall to reduce chip that degree cpu subsystem now can decide whether to enter low power consumpting state according to chip power-consumption design level Power consumption.
Accompanying drawing explanation
Fig. 1 is conventional security chip system framework
Fig. 2 is the dual processors nuclear safety chip system framework that the present invention proposes
Detailed description of the invention
As in figure 2 it is shown, in safety chip, have two cpu subsystems, one is CPU_1 subsystem (200), and one is CPU_2 subsystem (300).CPU_1 subsystem completes communication interface and processes and instruction parsing, and CPU_2 subsystem provides password fortune Calculate service and sensitive information processes.CPU_1 subsystem and CPU_2 subsystem have the memory resource of respective physical separation, pass through Special data channel (270) interaction data.
CPU_1 (222) can use the non-security CPU core of the low logic low operational capabilities of door number such as standard 8051, for reality Existing Communication processing and instruction resolve, and are integrated with memory cell _ 1 (221), communication interface unit by single system bus (223) and system control unit (224), memory cell _ 1 includes properly functioning required RAM and ROM of CPU_1.Due to function Relatively simple, this partial memory size, far below the memorizer of CPU_2 system, the most also has less electricity leakage power dissipation.CPU_2 (313) SC000 or SC300 of the safe CPU core such as ARM with stronger operational capability can be used.For realizing crypto-operation Function, memory cell _ 2 (314), algorithm coprocessor (312) and secure processing units (311) by security system bus and CPU_2 is integrated to form CPU_2 subsystem.CPU_2 secure subsystem is due to CPU and complicated security coprocessor and safe place Reason, logic gate number is typically the several times of CPU_1 Subsystem logical door number to decades of times, after this partial power gates, will make entirety The part that electricity leakage power dissipation is reduced under non-gate is to 1/tens.
For realizing the power remove of CPU_2 subsystem, chip have employed two voltage rectifying circuit VR_1 (210) and VR_2 (340), VR_1 need the circuit keeping power supply normally opened to provide power supply electricity for CPU_1 subsystem and power gating controller etc. Pressure, and the input of the voltage of VR_2 comes from power gating circuit, provides supply voltage for whole CPU_2 subsystem.
Power gating control unit turns off or on the voltage of VR_2 according to chip status switching control power gating circuit Input.Concrete control method is, when chip needs to enter Standby, produces control signal, turns off the voltage input of VR_2; When chip is waken up from Standby, produces control signal, open switch, again provide voltage input for VR_2.
For ensureing that CPU_2 subsystem will not have when not having voltage inactive level to be input to CPU_1 subsystem and cause function Mistake or new electric leakage, be input to data path isolated location to be had (260) of CPU_1 subsystem from CPU_2 subsystem, it is ensured that The level signal that CPU_1 subsystem receives is fixing high level or low level.
In CPU_2 subsystem, for reducing extra electrifying startup time overhead, system clock derives from system OSC (250), therefore should increase extra clock detection in secure processing units prevents clock from being disturbed by direct fault location or physics is invaded Enter to attack amendment.
The specific works mode of safety chip is: when safety chip is in Standby state, and CPU_1 subsystem keeps Electric power starting, enters low power consumpting state;CPU_2 subsystem power supply is gated shutoff, to ensure the electricity leakage power dissipation of chip Standby It is preferably minimized.When safety chip is in communication state, CPU_1 subsystem exits low power consumpting state, carries out communication receiving/transmission and instruction Dissection process.CPU_2 subsystem remains turned-off or electric power starting, but is in low power consumpting state.When safety chip needs to carry out close Code computing or carry out sensitive information when processing, CPU_2 subsystem power supply is unlocked, and carries out crypto-operation or sensitive data and processes.
The above, the only one of the present invention realizes example, is not intended to limit protection scope of the present invention.All Within the spirit and principles in the present invention, any modification, equivalent substitution and improvement etc. done, should be included in the guarantor of the present invention Within the scope of protecting.

Claims (7)

1. the double CUP nuclear safety chip architecture of Low dark curient, it is characterised in that: safety chip includes two cpu system subsystems, Two CPU can only access respective memorizer and register resources, it is achieved the thorough physics of safety applications and non-security application every From.Two cpu subsystems the most at least can provide low-power consumption and two kinds of duties of normal work.
Framework the most according to claim 1 a, it is characterised in that cpu subsystem is responsible for relatively low the leading to of computational complexity Communication interface and command analysis;Another one cpu subsystem is responsible for the higher crypto-operation service of computational complexity and sensitive information Process.
Framework the most according to claim 2, it is characterised in that the cpu subsystem tool that described responsible computational complexity is relatively low There are data storage and program storage and more weak computing energy that the most described responsible computational complexity height cpu subsystem is less The CPU element of power.
Framework the most according to claim 2, it is characterised in that the cpu subsystem tool that described responsible computational complexity is higher There are data storage and program storage that the most described relatively low cpu subsystem of responsible computational complexity is bigger, and possess relatively The CPU element of strong operational capability.
5. according to the framework described in claim 1 and claim 2, it is characterised in that described safety chip is in Standby shape During state, it is responsible for the relatively low cpu subsystem of computational complexity and keeps electric power starting, enter low power consumpting state;It is responsible for computational complexity Higher cpu subsystem power supply is gated shutoff, to ensure that the electricity leakage power dissipation of chip Standby is preferably minimized.
6. according to the framework described in claim 1 and claim 2, it is characterised in that described safety chip is in communication state Time, the cpu subsystem being responsible for computational complexity relatively low exits low power consumpting state, carries out communication receiving/transmission and instruction dissection process.Negative The duty higher cpu subsystem of computational complexity remains turned-off or electric power starting, but is in low power consumpting state.
7. according to the framework described in claim 1 and claim 2, it is characterised in that described safety chip needs to carry out password Computing or carry out sensitive information process time, the cpu subsystem power supply that responsible computational complexity is higher is unlocked, and carries out crypto-operation Or sensitive data processes.
CN201610352610.7A 2016-05-26 2016-05-26 A kind of Low dark curient dual processors nuclear safety chip architecture Withdrawn CN106066970A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610352610.7A CN106066970A (en) 2016-05-26 2016-05-26 A kind of Low dark curient dual processors nuclear safety chip architecture

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610352610.7A CN106066970A (en) 2016-05-26 2016-05-26 A kind of Low dark curient dual processors nuclear safety chip architecture

Publications (1)

Publication Number Publication Date
CN106066970A true CN106066970A (en) 2016-11-02

Family

ID=57420733

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610352610.7A Withdrawn CN106066970A (en) 2016-05-26 2016-05-26 A kind of Low dark curient dual processors nuclear safety chip architecture

Country Status (1)

Country Link
CN (1) CN106066970A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112597724A (en) * 2021-03-04 2021-04-02 长沙海格北斗信息技术有限公司 RISC-V based chip design method, navigation chip and receiver

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101276384A (en) * 2007-03-30 2008-10-01 成都方程式电子有限公司 Security control chip and implementing method thereof
CN104808769A (en) * 2015-04-21 2015-07-29 广东高云半导体科技股份有限公司 Low-power-consumption FPGA (Field Programmable Gate Array) device
CN104954941A (en) * 2015-06-10 2015-09-30 福州瑞芯微电子有限公司 High-performance and low-power HIFI (high fidelity) decoding system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101276384A (en) * 2007-03-30 2008-10-01 成都方程式电子有限公司 Security control chip and implementing method thereof
CN104808769A (en) * 2015-04-21 2015-07-29 广东高云半导体科技股份有限公司 Low-power-consumption FPGA (Field Programmable Gate Array) device
CN104954941A (en) * 2015-06-10 2015-09-30 福州瑞芯微电子有限公司 High-performance and low-power HIFI (high fidelity) decoding system

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112597724A (en) * 2021-03-04 2021-04-02 长沙海格北斗信息技术有限公司 RISC-V based chip design method, navigation chip and receiver
CN112597724B (en) * 2021-03-04 2021-05-25 长沙海格北斗信息技术有限公司 RISC-V based chip design method, navigation chip and receiver

Similar Documents

Publication Publication Date Title
US7275164B2 (en) System and method for fencing any one of the plurality of voltage islands using a lookup table including AC and DC components for each functional block of the voltage islands
TWI489270B (en) Apparatus, method and system for maintaining operational stability on a system on a chip
CN103733204A (en) Transition between states in a processor
CN104981815A (en) Method, apparatus, system for qualifying CPU transactions with security attributes
CN103208784B (en) Battery protecting circuit and method thereof
CN106681472B (en) Heterogeneous multi-nucleus processor power consumption control apparatus and its power consumption control method
CN1390330A (en) Bus arbitration in low power system
CN104813253A (en) Method and apparatus for power resource protection
CN103970248B (en) power management circuit and method and computer system
CN106095037B (en) Processing equipment and corresponding control methods
KR20090089430A (en) Security features in interconnect centric architectures
CN106293005A (en) Reduce the system and method for MCU chip stand-by power consumption
US10747909B2 (en) System architecture to mitigate memory imprinting
CN101943729A (en) Circuit for quickly detecting power sources and glitches on ground with low power consumption
US20150153796A1 (en) System and method for protecting power supply
CN103914123A (en) Computer device and power management method thereof
CN103164789A (en) Debug circuit structure provided with safety verification and achieving method of debug circuit structure provided with safety verification
CN106066970A (en) A kind of Low dark curient dual processors nuclear safety chip architecture
CN103679010B (en) Detection device
CN111512297A (en) Security for programmable devices in a data center
CN101924766A (en) Double-network communication method
CN106292821A (en) A kind of single live wire power getting chip
WO2020068591A1 (en) Architecture to mitigate configuration memory imprinting in programmable logic
CN105573870A (en) Control method and device for starting load device based on multi-way redundant power supply modules
CN108073830B (en) Terminal chip integrated with safety component

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
WW01 Invention patent application withdrawn after publication
WW01 Invention patent application withdrawn after publication

Application publication date: 20161102