CN206712805U - Key chip system and internet of things equipment - Google Patents

Key chip system and internet of things equipment Download PDF

Info

Publication number
CN206712805U
CN206712805U CN201720451596.6U CN201720451596U CN206712805U CN 206712805 U CN206712805 U CN 206712805U CN 201720451596 U CN201720451596 U CN 201720451596U CN 206712805 U CN206712805 U CN 206712805U
Authority
CN
China
Prior art keywords
key chip
system bus
key
unit
bus unit
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN201720451596.6U
Other languages
Chinese (zh)
Inventor
梁海浪
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Midea Group Co Ltd
Midea Smart Home Technology Co Ltd
Original Assignee
Midea Group Co Ltd
Midea Smart Home Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Midea Group Co Ltd, Midea Smart Home Technology Co Ltd filed Critical Midea Group Co Ltd
Priority to CN201720451596.6U priority Critical patent/CN206712805U/en
Application granted granted Critical
Publication of CN206712805U publication Critical patent/CN206712805U/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Storage Device Security (AREA)

Abstract

The utility model proposes a kind of key chip system and internet of things equipment, in the key chip system, key chip includes:System bus unit, multiple AES hardware accelerators, the true random number generation unit being connected respectively with system bus unit;Piece external equipment includes:Security control unit and Serial Peripheral Interface (SPI);Multiple AES hardware accelerators include:National secret algorithm SM9 hardware accelerators, public key encryption algorithm RSA hardware accelerators, national secret algorithm SSF33 hardware accelerators.There is hardware security protection by the utility model key chip, lift the data confidentiality performance of key chip, and, by configuring system bus unit, the data-handling efficiency of effective lifting system.

Description

Key chip system and internet of things equipment
Technical field
It the utility model is related to communication technical field, more particularly to a kind of key chip system and internet of things equipment.
Background technology
At present, it is a applied to having on the low-power consumption of Internet of Things, low cost, high security, multi-functional key chip Key management (including password generation, storage, renewal etc.) unit on piece.Data are sent out again after carrying out safe encryption by key chip See off.Receiving terminal also has corresponding key chip to be decrypted, and ensures the security of data transfer.
In the prior art, the key chip is protected without hardware security, may be intercepted when data are propagated in atmosphere, and It is easy to crack, data confidentiality performance is bad.
Utility model content
The utility model is intended to one of technical problem at least solving in correlation technique to a certain extent.
Therefore, a purpose of the present utility model is to propose a kind of key chip system so that key chip has hard Part safeguard protection, the data confidentiality performance of key chip is lifted, and, by configuring system bus unit, effective lifting system Data-handling efficiency.
Another purpose of the present utility model is to propose a kind of internet of things equipment.
To reach above-mentioned purpose, key chip system that the utility model first aspect embodiment proposes, including:Key core Piece and the piece external equipment being connected with the key chip, wherein, the key chip includes:System bus unit, respectively with institute State the connected multiple AES hardware accelerators of system bus unit;The true random number production being connected with the system bus unit Raw unit;Described external equipment includes:Security control unit and Serial Peripheral Interface (SPI);The Serial Peripheral Interface (SPI) and the system Bus unit is connected;The security control unit is connected with the key chip;Wherein, the multiple AES is hardware-accelerated Device includes:National secret algorithm SM9 hardware accelerators, public key encryption algorithm RSA hardware accelerators, national secret algorithm SSF33 are hardware-accelerated Device.
The key chip system that the utility model first aspect embodiment proposes, by setting piece peripheral hardware in key chip It is standby, and multiple AES hardware accelerators are configured, and the built-in system bus unit in key chip so that key chip has There is hardware security protection, lift the data confidentiality performance of key chip, and, by configuring system bus unit, effectively lifting is The data-handling efficiency of system.
To reach above-mentioned purpose, internet of things equipment that the utility model second aspect embodiment proposes, including:Equipment sheet Body, and the key chip system that first aspect embodiment proposes.
The internet of things equipment that the utility model second aspect embodiment proposes, by setting piece external equipment in key chip, And multiple AES hardware accelerators are configured, and the built-in system bus unit in key chip so that key chip has Hardware security is protected, and lifts the data confidentiality performance of key chip, and, by configuring system bus unit, effective lifting system Data-handling efficiency.
The additional aspect of the utility model and advantage will be set forth in part in the description, partly by from following description In become obvious, or by it is of the present utility model practice recognize.
Brief description of the drawings
The above-mentioned and/or additional aspect of the utility model and advantage from the following description of the accompanying drawings of embodiments will Become obvious and be readily appreciated that, wherein:
Fig. 1 is the structural representation for the key chip system that the embodiment of the utility model one proposes;
Fig. 2 is the structural representation for the key chip system that another embodiment of the utility model proposes.
Embodiment
Embodiment of the present utility model is described below in detail, the example of the embodiment is shown in the drawings, wherein from beginning Same or similar element is represented to same or similar label eventually or there is the element of same or like function.Below by ginseng The embodiment for examining accompanying drawing description is exemplary, is only used for explaining the utility model, and it is not intended that to of the present utility model Limitation.On the contrary, embodiment of the present utility model includes falling into owning in the range of the spirit and intension of attached claims Change, modification and equivalent.
Fig. 1 is the structural representation for the key chip system that the embodiment of the utility model one proposes.
Referring to Fig. 1, the key chip system 10 includes:Key chip 11 and the piece external equipment being connected with key chip 11 12, wherein, key chip 11 includes:System bus unit 1101, the multiple encryptions being connected respectively with system bus unit 1101 Hardware algorithm accelerator;The true random number generation unit 1105 being connected with system bus unit 1101;Piece external equipment 12 includes:Peace Full control unit 121 and Serial Peripheral Interface (SPI) 122;Serial Peripheral Interface (SPI) 122 is connected with system bus unit 1101;Security control Unit 121 is connected with key chip 11.
In one embodiment of the present utility model, the key chip system 10 can be that wireless fidelity systems level encapsulates The key chip system of (System In Package, SiP).
Therefore, the key chip system 10 in the utility model has more preferable resistance to mechanical and chemical attack ability, can Significantly shorten product development and the cycle launched, less radio-frequency performance is more stable, and reliability is higher.
In one embodiment of the present utility model, the key chip system 10 includes:Key chip 11 and with key core The connected piece external equipment 12 of piece 11, wherein,
Key chip 11 includes:
System bus unit 1101, the multiple AES hardware accelerators being connected respectively with system bus unit 1101.
Wherein, the system bus unit 1101 can be, for example, Advanced High-Performance Bus (Advanced High Performance Bus, AHB) unit.
The system bus unit 1101 only relies only on the assistance of flash memory access memory 126, without any bridger (bridge) and/or I/O interface assistance so that data, address and control signal during data processing operation can be via The high-speed transfer of system bus unit 1101 is to other units, therefore, the data-handling efficiency of effective lifting system.
In embodiment of the present utility model, by configuring system bus unit 1101, due to the high data of system bus Handling capacity, its data processing amount within the unit interval are far above SDIO/SPI data processing amount.And key core can be simplified The hardware design of piece system 10.It is easy to use modular construction design method, access system bus unit in hardware design 1101 flash memory access memory 126, multiple AES hardware accelerators etc., it is connected with system bus unit 1101 Connect, without considering the handling process inside system bus unit 1101.By configuring system bus unit 1101, system is simplified Structure so that whole system is clear in structure, and line is few, realizes the printing of bottom plate line.
Further, by configuring system bus unit 1101 so that system expansibility can be good.On the one hand it is that scale expands Fill, scale expands needs only to insert the plug-in units of some same types more, is on the other hand that function expands, function expand need only to by The standard of lighting system bus unit 1101 designs new plug-in unit.System bus unit 1101 make it that system update performance is good.Due to multiple AES hardware accelerator, flash memory access memory 126 etc. are suspended to always by the design code of system bus unit 1101 On line, therefore, it is possible to as the chip of processor and other progress about chip design new plug-in unit, new plug-in unit is inserted System is updated on to bottom plate, without changing other plug-in units and bottom plate line.
Wherein, multiple AES hardware accelerators include:
National secret algorithm SM9 hardware accelerators 1102, public key encryption algorithm RSA hardware accelerators 1103, national secret algorithm SSF33 Hardware accelerator 1104.
In one embodiment of the present utility model, the key chip 11 is built-in with security algorithm engine, and security algorithm draws Not only support SM9 id password algorithms are held up, also support RSA public key encryption algorithms, and built-in true random number module.
The AES that multiple AES hardware accelerators are supported respectively is as follows:
1st, SM9 id passwords algorithm, it is a kind of cryptographic algorithm based on mark.SM9 id passwords algorithm has with entity Criterion knows (such as addresses of items of mail, phone number, QQ number, identity card code) and is used as public key, and user is without application and exchanges certificate, from And substantially reduce the complexity of key chip system 10.
2nd, it public key encryption algorithm RSA, can be not only used for encrypting, can be used for digital signature again.
3rd, SSF33 cryptographic algorithms, it is to carry out computing in units of 128 packets, key length is 16 bytes.
SSF33 algorithms and symmetric encipherment algorithm based on 3-DES use the key of equal length, can be based on original The key management of 3-DES symmetric encipherment algorithms is compatible.
The true random number generation unit 1105 being connected with system bus unit 1101.
Piece external equipment 12 includes:Security control unit 121 and Serial Peripheral Interface (SPI) 122.
Serial Peripheral Interface (SPI) 122 is connected with system bus unit 1101.
Security control unit 121 is connected with key chip 11.
In embodiment of the present utility model, security control unit 121 can be used for detecting power supply monitoring/administrative unit 125 power supply and frequency, thus, it is possible to effectively prevent that outside from being attacked by measuring power supply wave shape and frequency.
In one embodiment of the present utility model, referring to Fig. 2, piece external equipment 12 also includes:
The external piloting control processor 123 being connected with Serial Peripheral Interface (SPI) 122, external piloting control processor 123 pass through serial outer If carry out data transmission between interface 122, system bus unit 1101 and multiple AES hardware accelerators.
Piece external equipment 12 also includes:The clock unit 124 being connected with system bus unit 1101.
In embodiment of the present utility model, clock unit 124 can provide required when key chip system 10 works Clock.
Piece external equipment 12 also includes:Power supply monitoring/the administrative unit 125 being connected with key chip 11.
Piece external equipment 12 also includes:The flash memory access memory 126 being connected with system bus unit 1101.
In embodiment of the present utility model, flash memory access memory 126 can be used for part caused by caching encryption Data.
In the present embodiment, by setting piece external equipment in key chip, and multiple AES hardware accelerators are configured, and The built-in system bus unit in key chip so that key chip has hardware security protection, lifts the data of key chip Security performance, and, by configuring system bus unit, the data-handling efficiency of effective lifting system.
It should be noted that in description of the present utility model, term " first ", " second " etc. are only used for describing purpose, And it is not intended that instruction or hint relative importance.In addition, in description of the present utility model, it is unless otherwise indicated, " more It is individual " it is meant that two or more.
Any process or method described otherwise above description in flow chart or herein is construed as, and represents to include Module, fragment or the portion of the code of the executable instruction of one or more the step of being used to realize specific logical function or process Point, and the scope of preferred embodiment of the present utility model includes other realization, wherein can not press shown or discuss Order, including according to involved function by it is basic simultaneously in the way of or in the opposite order, carry out perform function, this should be by this The embodiment person of ordinary skill in the field of utility model is understood.
It should be appreciated that each several part of the present utility model can be realized with hardware, software, firmware or combinations thereof. In above-mentioned embodiment, what multiple steps or method can be performed in memory and by suitable instruction execution system with storage Software or firmware are realized.If, and in another embodiment, can be with known in this field for example, realized with hardware Any one of following technology or their combination realize:With the gate for realizing logic function to data-signal The discrete logic of circuit, the application specific integrated circuit with suitable combinational logic gate circuit, programmable gate array (PGA), Field programmable gate array (FPGA) etc..
Those skilled in the art are appreciated that to realize all or part of step that above-described embodiment method carries Suddenly it is that by program the hardware of correlation can be instructed to complete, described program can be stored in a kind of computer-readable storage medium In matter, the program upon execution, including one or a combination set of the step of embodiment of the method.
In addition, each functional unit in each embodiment of the utility model can be integrated in a processing module, Can be that unit is individually physically present, can also two or more units be integrated in a module.It is above-mentioned integrated Module can both be realized in the form of hardware, can also be realized in the form of software function module.The integrated mould If block is realized in the form of software function module and counted as independent production marketing or in use, one can also be stored in In calculation machine read/write memory medium.
Storage medium mentioned above can be read-only storage, disk or CD etc..
In the description of this specification, reference term " one embodiment ", " some embodiments ", " example ", " specifically show The description of example " or " some examples " etc. means specific features, structure, material or the spy for combining the embodiment or example description Point is contained at least one embodiment or example of the present utility model.In this manual, to the schematic table of above-mentioned term State and be not necessarily referring to identical embodiment or example.Moreover, specific features, structure, material or the feature of description can be Combined in an appropriate manner in any one or more embodiments or example.
Although embodiment of the present utility model has been shown and described above, it is to be understood that above-described embodiment is Exemplary, it is impossible to it is interpreted as to limitation of the present utility model, one of ordinary skill in the art is in the scope of the utility model It is interior above-described embodiment to be changed, changed, replaced and modification.

Claims (7)

1. a kind of key chip system, it is characterised in that the key chip system includes:Key chip and with the key core The connected piece external equipment of piece, wherein,
The key chip includes:
System bus unit, the multiple AES hardware accelerators being connected respectively with the system bus unit;
The true random number generation unit being connected with the system bus unit;
Described external equipment includes:Security control unit and Serial Peripheral Interface (SPI);
The Serial Peripheral Interface (SPI) is connected with the system bus unit;
The security control unit is connected with the key chip;
Wherein, the multiple AES hardware accelerator includes:
National secret algorithm SM9 hardware accelerators, public key encryption algorithm RSA hardware accelerators, national secret algorithm SSF33 hardware accelerators.
2. key chip system as claimed in claim 1, it is characterised in that described external equipment also includes:
The external piloting control processor being connected with the Serial Peripheral Interface (SPI), the external piloting control processor pass through the serial peripheral Carry out data transmission between interface, the system bus unit and the multiple AES hardware accelerator.
3. key chip system as claimed in claim 1, it is characterised in that described external equipment also includes:
The clock unit being connected with the system bus unit.
4. key chip system as claimed in claim 1, it is characterised in that described external equipment also includes:
Power supply monitoring/the administrative unit being connected with the key chip.
5. key chip system as claimed in claim 1, it is characterised in that described external equipment also includes:
The flash memory access memory being connected with the system bus unit.
A kind of 6. internet of things equipment, it is characterised in that including:Apparatus body, and
Key chip system as described in claim any one of 1-5.
7. internet of things equipment as claimed in claim 6, it is characterised in that the internet of things equipment includes:
Home appliance, sensor device or control device.
CN201720451596.6U 2017-04-26 2017-04-26 Key chip system and internet of things equipment Expired - Fee Related CN206712805U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201720451596.6U CN206712805U (en) 2017-04-26 2017-04-26 Key chip system and internet of things equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201720451596.6U CN206712805U (en) 2017-04-26 2017-04-26 Key chip system and internet of things equipment

Publications (1)

Publication Number Publication Date
CN206712805U true CN206712805U (en) 2017-12-05

Family

ID=60459350

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201720451596.6U Expired - Fee Related CN206712805U (en) 2017-04-26 2017-04-26 Key chip system and internet of things equipment

Country Status (1)

Country Link
CN (1) CN206712805U (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113660087A (en) * 2021-07-06 2021-11-16 浙江传媒学院 SM9 identification cryptographic algorithm hardware implementation system based on finite field

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113660087A (en) * 2021-07-06 2021-11-16 浙江传媒学院 SM9 identification cryptographic algorithm hardware implementation system based on finite field
CN113660087B (en) * 2021-07-06 2023-09-26 浙江传媒学院 SM9 identification cipher algorithm hardware realization system based on finite field

Similar Documents

Publication Publication Date Title
US20220138349A1 (en) Cryptographic architecture for cryptographic permutation
CN101873587B (en) Wireless communication device and method for realizing service security thereof
CN110414244A (en) Encrypted card, electronic equipment and cryptographic services method
CN107425976A (en) Key chip system and internet of things equipment
CN102576397B (en) The checking of token and data integrity protection
CN108012580A (en) Electronic network device
CN109993008A (en) Method and arrangement for implicit integrality
CN109145568A (en) A kind of full algorithm cipher card and its encryption method based on PCI-E interface
WO2022132184A1 (en) System, method and apparatus for total storage encryption
TW201304439A (en) NFC communications device for setting up encrypted email communication
CN104488219A (en) Methods and system for secure communication between an rfid tag and a reader
Liu et al. Design and implementation of an ECC-based digital baseband controller for RFID tag chip
JP2003512649A (en) Cryptographic accelerator
CN113573304A (en) Signature realization method, signature verification method, signature terminal, signature verification terminal and storage medium
CN102737270A (en) Security co-processor of bank smart card chip based on domestic algorithms
Fu et al. A low‐cost UHF RFID tag chip with AES cryptography engine
CN109104275A (en) A kind of HSM equipment
CN206712806U (en) Key chip system and internet of things equipment
CN109344664A (en) A kind of cipher card and its encryption method that based on FPGA data are carried out with algorithm process
CN206712805U (en) Key chip system and internet of things equipment
Ertl et al. A security-enhanced UHF RFID tag chip
US20210328779A1 (en) Method and apparatus for fast symmetric authentication and session key establishment
CN101515853B (en) Information terminal and information safety device thereof
CN206712809U (en) Key chip system and internet of things equipment
CN103186745A (en) Graphical dynamic password token

Legal Events

Date Code Title Description
GR01 Patent grant
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20171205

Termination date: 20210426

CF01 Termination of patent right due to non-payment of annual fee