JP5665584B2 - Electronics - Google Patents

Description

  The present invention relates to an electronic device with improved tamper resistance, and improves the security of an electronic device containing an electronic circuit board.

  Sealed electronic devices are configured by housing an electronic circuit board in a metal case. Among such electronic devices, for example, those that handle confidential information, it is necessary to ensure tamper resistance in order to ensure security.

Here, an example in which it is necessary to ensure tamper resistance will be described.
For example, in an ETC system (Electronic Toll Collection System), a fee settlement process is performed by two-way wireless communication between an in-vehicle device mounted on a vehicle and a roadside device. Therefore, the vehicle can pass through the toll gate on the toll road without stopping.
As described above, when the fee settlement processing is performed by wireless communication for the vehicle passing through the gate of the toll gate, it is necessary to encrypt all security information such as credit card data in order to ensure security.

  For this reason, the roadside device of the ETC gate is provided with a cryptographic processing device (roadside SAM (Secure Application Module)). In the cryptographic processing device (SAM), cryptographic logic for cryptographic communication and the like are stored therein, and encryption / decryption processing is performed.

The electronic circuit board of the encryption processing device (SAM) of the roadside device is locked and housed in a sturdy metal case for the purpose of protection from external attacks that cause circuit information concealment and malfunction.
Specifically, as shown in FIG. 14 which is an external view and FIG. 15 which is a perspective view of the metal case, the cryptographic processing apparatus 10 places the electronic circuit board 12 in the metal case 11 formed of aluminum or the like. It is housed and configured. The electronic circuit board 12 is formed by mounting various electronic components 12b on a printed board 12a.
The various electronic components 12b include cryptographic processing ICs, power supply circuits, random number generation circuits, various chip components, various ICs, and the like.

In Patent Document 1 (Japanese Translation of PCT International Publication No. 2005-528783) cited as a prior art document, an important circuit pattern is provided in the inner layer of an electronic circuit board (laminated substrate) for the purpose of hiding the important pattern of the electronic circuit. It is shown.
However, the technique of Patent Document 1 does not maintain or ensure tamper resistance in an electronic device in which an electronic circuit board is housed in a metal case as described above.

Special table 2005-528783

  By the way, in the prior art, there is an external threat as shown in the following (1) to (3) that degrades the security performance even if the above measures (measures for storing the electronic circuit board in the metal case) are taken. It remained.

(1) Even if the electronic circuit board 12 is housed in the metal case 11, if non-destructive inspection such as X-ray inspection or MRI inspection is performed, the arrangement position of the electronic component 12b inside the metal case 11 and the printed circuit board 12a The wiring pattern formed in FIG.
FIG. 16 shows an example of an X-ray image (or MRI image) obtained through fluoroscopy by non-destructive inspection such as X-ray inspection or MRI inspection.

(2) By measuring the weak leaked radio wave emitted by the cryptographic processing IC included in the electronic circuit board 12 and monitoring the time fluctuation (processing cycle, processing time, etc.) of the leaked electromagnetic wave outside the metal case 11, There is a risk that information such as a processing algorithm (encryption algorithm) is estimated and specified.
FIG. 17 shows an example of the time variation of the measured radio wave intensity of the leaked radio wave.

(3) If the temperature distribution on the surface of the metal case 11 is monitored by thermography, the position and size of the main components (heat generating components) of the electronic circuit board 12 may be specified.
FIG. 18 shows an example of the surface temperature distribution of the cryptographic processing apparatus 10 monitored by thermography.

  An object of the present invention is to provide an electronic device that can maintain tamper-resistant performance against the above-described various threats in view of the related art.

The configuration of the present invention for solving the above problems is as follows.
In an electronic device configured to house an electronic circuit board,
Including a tamper resistant material made of at least a conductor,
Random radiation is performed by connecting a high frequency power source to the conductor and applying a random voltage to the conductor from the high frequency power source .

The configuration of the present invention is as follows.
The tamper-resistant material is filled with a resin mold .

The configuration of the present invention is as follows.
In an electronic device configured to house an electronic circuit board,
Including a tamper-resistant material consisting of at least a radiation attenuation body,
In the first radiation attenuated body, a warning text is described with a second radiation attenuated body having a radiation attenuation rate different from that of the first radiation attenuated body .

  ADVANTAGE OF THE INVENTION According to this invention, the tamper resistance of the electronic device which needs to ensure security can be improved.

Sectional drawing which shows the encryption processing apparatus which concerns on Example 1 of this invention. 1 is a configuration diagram illustrating a cryptographic processing apparatus according to a first embodiment of the present invention. FIG. 3 is an image diagram illustrating an example of an image obtained by performing a nondestructive inspection on the cryptographic processing apparatus according to the first embodiment of the present invention. Sectional drawing which shows the encryption processing apparatus which concerns on Example 2 of this invention. The block diagram which shows the encryption processing apparatus which concerns on Example 2 of this invention. The image figure which shows an example of the image obtained by performing the nondestructive inspection with respect to the encryption processing apparatus which concerns on Example 2 of this invention. Sectional drawing which shows the encryption processing apparatus which concerns on Example 3 of this invention. The block diagram which shows the encryption processing apparatus which concerns on Example 3 of this invention. The image figure which shows an example of the surface temperature distribution obtained by monitoring with the thermography with respect to the encryption processing apparatus which concerns on Example 3 of this invention. The characteristic view which shows an example of the time fluctuation | variation of the leakage electromagnetic wave obtained by measuring a leakage electric wave with respect to the encryption processing apparatus which concerns on Example 3 of this invention. Sectional drawing which shows the encryption processing apparatus which concerns on Example 4 of this invention. The block diagram which shows the encryption processing apparatus which concerns on Example 4 of this invention. The image figure which shows an example of the X-ray image obtained by carrying out X-ray inspection and seeing through with respect to the encryption processing apparatus which concerns on Example 4 of this invention. The external view which shows the conventional encryption processing apparatus. The block diagram which shows the conventional encryption processing apparatus. The image figure which shows an example of the image obtained by performing the nondestructive inspection with respect to the conventional encryption processing apparatus. The characteristic view which shows an example of the time fluctuation | variation of the leakage electromagnetic wave obtained by measuring a leakage electric wave with respect to the conventional encryption processing apparatus. The image figure which shows an example of the surface temperature distribution obtained by monitoring with the thermography with respect to the conventional encryption processing apparatus.

  Hereinafter, embodiments of the present invention will be described in detail based on examples.

  FIG. 2 is a cross-sectional view of the cryptographic processing device 110, which is an electronic device with improved tamper resistance, according to the first embodiment of the present invention, and FIG. 2 is a plan view showing the metal case and the protective plate in a plan view. Will be described with reference to FIG.

As shown in both figures, the cryptographic processing apparatus 110 is configured by housing an electronic circuit board 112 in a metal case 111 made of aluminum or the like. The electronic circuit board 112 is formed by mounting various electronic components 112b on a printed board 112a.
Further, a protective plate 113 is inserted and arranged between the inner wall surface of the metal case 111 and the electronic circuit board 112. In this example, the electronic circuit board 112 is sandwiched between the two protective plates 113, and each protective plate 113 faces the upper surface and the lower surface of the electronic circuit substrate 112.

The protective plate 113 is configured by filling a resin 113c (resin mold) with a ferromagnetic metal piece (or metal particle) 113a and a metal piece (or metal particle) 113b having a high X-ray attenuation rate.
The ferromagnetic metal piece (or metal particle) 113a is, for example, neodymium as a magnet material, and has a characteristic of distorting the MRI image.
The metal piece (or metal particle) 113b having a high X-ray attenuation rate is a radiation attenuation body such as lead, and has characteristics that cause a decrease in contrast and an increase in noise in the X-ray inspection image.

The plurality of ferromagnetic metal pieces (or metal particles) 113a may have the same characteristic value (characteristic value, that is, size, shape, magnetic strength), or may have two or more characteristics. Good.
The plurality of metal pieces (or metal particles) 113b having a high X-ray attenuation rate have different characteristic values (characteristic values, that is, size, shape, and X-ray attenuation rate) even if they are the same. There may be more.

Even if such an encryption processing apparatus 110 is subjected to MRI inspection, the MRI image is distorted by the ferromagnetic metal piece (or metal particle) 113a.
Further, even if such an encryption processing apparatus 110 is inspected by X-ray, the metal piece (or metal particle) 113b having a high X-ray attenuation rate reduces the contrast of the X-ray inspection image and increases noise.

  FIG. 3 shows an example of an MRI image or X-ray image obtained by performing a nondestructive inspection such as an MRI inspection or an X-ray inspection on the cryptographic processing apparatus 110.

  As shown in FIG. 3, even if MRI inspection or X-ray inspection is performed on the cryptographic processing apparatus 110, the MRI image is distorted and the contrast of the X-ray inspection image is decreased and noise is increased. The visibility of the layout of the encryption processing device 110 is reduced, and the tamper resistance of the cryptographic processing device 110 can be ensured.

In the above example, the metal pieces 113a and 113b are resin-molded with the resin 113c. However, the present invention is not limited to this, and a plurality of types of metal pieces with different characteristics may be resin-molded. In this case, of the plurality of types of metal pieces, one type of metal piece is a ferromagnetic metal, and the other type of metal piece is a metal having a high radiation attenuation rate.
Further, not only the ferromagnetic metal pieces (or metal particles) 113a but also magnetic metal pieces (or metal particles) can be used.

In addition, the same ceramic plastic (chip component, IC, etc.) as the electronic component 112b mounted on the electronic circuit board 112 can be added and resin-molded inside the protective plate 113, thereby further improving the visibility of the circuit. It becomes difficult.
In addition, if the size and shape of the metal piece 113b having a high X-ray attenuation rate is set to the same size and shape as the vias, lands, through holes, and IC / LSI lead patterns of the printed circuit board 112a, the visibility of the circuit is improved. It can be even more difficult.

  FIG. 5 is a cross-sectional view of the cryptographic processing device 210, which is an electronic device with improved tamper resistance, according to the second embodiment of the present invention, and FIG. 5 is a plan view showing the metal case and the metal plate in a plan view. Will be described with reference to FIG.

As shown in both figures, the cryptographic processing apparatus 210 is configured by housing an electronic circuit board 212 in a metal case 211 formed of aluminum or the like. The electronic circuit board 212 is formed by mounting various electronic components 212b on a printed board 212a.
Further, a ferromagnetic foil-like metal plate 213a and a foil-like metal plate 213b having a high X-ray attenuation rate are attached to the inner wall surface of the metal case 211.
The metal plates 213 a and 213 b are small plate plates having a smaller area than the inner wall surface of the metal case 211, and a large number of metal plates 213 a and 213 b are randomly attached to the inner wall surface of the metal case 211. ing. The ferromagnetic metal plate 213a and the metal plate 213b having a high X-ray attenuation rate may be overlapped and pasted at the same position.

In this example, the metal plates 213a and 213b attached to the upper inner wall surface of the inner wall surface of the metal case 211 and the metal plates 213a and 213b attached to the lower inner wall surface of the inner wall surface of the metal case 211 are used. The electronic circuit board 112 is sandwiched. That is, the metal plates 213 a and 213 b attached to the upper and lower inner wall surfaces of the inner wall surface of the metal case 211 face the upper surface and the lower surface of the electronic circuit board 112.
The ferromagnetic metal plate 213a is, for example, neodymium as a magnet material, and has a characteristic of distorting the MRI image.
The metal plate 213b having a high X-ray attenuation rate is, for example, a radiation attenuation body such as lead, and has characteristics that cause a decrease in contrast and an increase in noise in the X-ray inspection image.

The plurality of metal plates 213a may have the same or different characteristic values (characteristic numerical values, that is, size, shape, and magnetic strength), and may have two or more characteristics.
The plurality of metal plates 213b may have the same or different characteristic values (characteristic values, that is, size, shape, and X-ray attenuation rate) and may have two or more characteristics.

Even when the cryptographic processing apparatus 210 is inspected by MRI, the MRI image is distorted by the ferromagnetic metal plate 213a.
Further, even if such an encryption processing apparatus 210 is inspected by X-ray, the contrast of the X-ray inspection image is reduced and noise is increased by the metal piece plate 213b having a high X-ray attenuation rate.

  FIG. 6 shows an example of an MRI image or an X-ray image obtained by seeing through a nondestructive inspection such as an MRI inspection or an X-ray inspection with respect to the cryptographic processing apparatus 210.

  As shown in FIG. 6, even if MRI inspection or X-ray inspection is performed on the cryptographic processing apparatus 210, the MRI image is distorted, the contrast of the X-ray inspection image is reduced, and noise is increased. The tread resistance of the cryptographic processing device 210 can be ensured.

The thickness of the metal plate 213b having a high X-ray attenuation rate may be uniform, but the thickness may be tapered.
If the thickness of the metal plate 213b is uniform, there is a possibility that an image of the electronic circuit board 212 can be created if the portion with and without the metal plate 213b is photographed twice, but if the thickness is tapered, the taper In order to clearly see through the portion, it is necessary to perform imaging with a large number of X-ray intensities, which makes it more difficult to see through.
Further, not only the ferromagnetic metal plate 213a but also a magnetic metal plate can be used.

  In the above example, the metal plates 213a and 213b are attached. However, the present invention is not limited to this, and a plurality of types of metal plates having different characteristics may be attached. In this case, of the plurality of types of metal plates, one type of metal plate is a ferromagnetic metal, and the other type of metal plate is a metal having a high radiation attenuation rate.

  FIG. 7 is a cross-sectional view of the cryptographic processing device 310, which is an electronic device with improved tamper resistance, according to the third embodiment of the present invention, and a plan view showing the metal case and the resistor mesh in a plan view. Explanation will be made with reference to FIG.

As shown in both figures, the cryptographic processing apparatus 310 is configured by housing an electronic circuit board 312 in a metal case 311 formed of aluminum or the like. The electronic circuit board 312 is formed by mounting various electronic components 312b on a printed board 312a.
Further, a resistor mesh 313 is attached to the inner wall surface of the metal case 311.
The resistor mesh 313 is obtained by insulating the resistor 313a with an insulating material 313b.

A high frequency power source (not shown) is connected to the resistor 313a of the resistor mesh 313, and random switching between energization / cutoff of the current flowing through the resistor 313a is performed randomly by a random number generation circuit built in the cryptographic processing device 310. Like to do.
For this reason, a random voltage is applied to the resistor 313a of the resistor mesh 313 so that a high-frequency current flows, and the high-frequency current flows randomly in time.

  Thus, since a high frequency current flows through the resistor 313a of the resistor mesh 313 randomly in time, heat is randomly generated on the surface (outer wall surface) of the metal case 311 and dummy radio waves are radiated randomly. Is done. That is, heat and dummy radio waves are radiated at random.

  As the resistor 313a, a plurality of resistors can be connected. In this case, the characteristic values (characteristic values, that is, size, shape, and resistance value) of the resistors are the same. There may be two or more characteristics that are different.

FIG. 9 shows an example of a surface temperature distribution image monitored by thermography for the cryptographic processing apparatus 310.
As shown in FIG. 9, even if the cryptographic processor 310 is monitored by thermography, the heat generated by the resistor mesh 313 reduces the contrast of the surface temperature reflected in the thermography, and the main components (heat generating components) of the electronic circuit board 312 are displayed. ) Cannot be specified, and the tamper resistance of the cryptographic processing device 310 can be ensured.

FIG. 10 shows an example of time fluctuations (processing period, processing time, etc.) of the measured leaked electromagnetic wave by measuring the weak leaked radio wave generated by the cryptographic processing IC included in the electronic circuit board 312.
As shown in FIG. 10, even if leakage electromagnetic waves are measured, dummy electromagnetic waves are radiated randomly from the resistor mesh 313, so that periodic fluctuations in the electromagnetic wave intensity cannot be detected, and the tamper resistance of the cryptographic processing device 310 is detected. Can be secured.

  In addition, a ferromagnetic metal or a high-resistance metal material with a high attenuation rate of X-rays is connected with a conductor such as an electric wire, and a protective plate made of resin is placed between the inner wall of the metal case and the electronic circuit board. However, by supplying a high-frequency power supply to the connected wires randomly in time, it becomes noise for any of MRI, X-rays, thermography, and electromagnetic wave analysis, lowering the analytical performance, and tamper-resistant performance Can also be secured.

  FIG. 11 is a cross-sectional view of the cryptographic processing device 410, which is an electronic device with improved tamper resistance, according to the fourth embodiment of the present invention, and FIG. 12 is a plan view showing the metal case and the warning plate in a plan view. Will be described with reference to FIG.

As shown in both figures, the cryptographic processing apparatus 410 is configured by housing an electronic circuit board 412 in a metal case 411 formed of aluminum or the like. The electronic circuit board 412 is formed by mounting various electronic components 412b on a printed board 412a.
Further, a warning plate 413 for displaying a warning text is attached to the inner wall surface of the metal case 411.
The warning plate 413 is formed by, for example, engraving a warning text on a copper plate (a metal with a low X-ray attenuation rate), and putting a metal different from the copper plate (a metal with a high X-ray attenuation rate such as lead) into the engraved portion. doing. That is, the warning plate 413 is written with a warning text of a different metal. For this reason, when the warning plate 412 is inspected by X-ray, a dissimilar metal portion is detected and a warning text is displayed.

  FIG. 13 shows an example of an X-ray image obtained by performing X-ray inspection and seeing through the cryptographic processing apparatus 410.

  As shown in FIG. 13, when an X-ray inspection is performed on the cryptographic processing apparatus 410, a warning text is displayed in the X-ray inspection image. It becomes. The contents (words) of the warning text are such that “it is an illegal act to perform an X-ray inspection of the cryptographic processing device and see through the inside”.

  The warning plate can be configured by writing a warning text on the first radiation attenuated body with the second radiation attenuated body having a radiation attenuation rate different from that of the first radiation attenuated body.

  The security can be further improved by combining any of a plurality of techniques for improving the tamper resistance shown in the above-described embodiments.

  The electronic device with improved tamper resistance according to the present invention is not only a cryptographic processing device but also an electronic device in which an electronic circuit board is housed in a metal case, and is tamper resistant to ensure security. It can be applied to various electronic devices that need to ensure the above.

10, 110, 210, 310, 410 Cryptographic processing device 11, 111, 211, 311, 411 Metal case 12, 112, 212, 312, 412 Electronic circuit board 12a, 112a, 212a, 312a, 412a Printed circuit board 12b, 112b, 212b, 312b, 412b Electronic component 113 Guard plate 113a Ferromagnetic metal piece (metal particles)
113b Metal piece with high X-ray attenuation rate (metal particles)
213a Ferromagnetic metal plate 213b X-ray attenuation high metal plate 313 Resistor mesh 313a Resistor 313b Insulation 413 Warning plate

Claims (3)

In an electronic device configured to house an electronic circuit board,
Including a tamper resistant material made of at least a conductor,
An electronic device characterized in that a random frequency is emitted by connecting a high-frequency power source to the conductor and applying a random voltage from the high-frequency power source to the conductor . 2. The electronic device according to claim 1, wherein the tamper resistant material is filled with a resin mold . In an electronic device configured to house an electronic circuit board,
Including a tamper-resistant material consisting of at least a radiation attenuation body,
An electronic device , wherein a warning text is described in a second radiation attenuated body having a radiation attenuation rate different from that of the first radiation attenuated body .