RU222536U1 - TRUSTED COMPUTING MODULE - Google Patents

Abstract

The utility model relates to the field of personal mini-computers that provide operation in a trusted mode, with digital communication with the information infrastructure and user interaction with input-output devices as part of work in user programs, and is designed with the ability to replace the processor module. The trusted computing module consists of a housing 7 in which a motherboard 1 is fixed with an edge connector MXM 3.0 standard SMARC 2.1, to which a processor module 2 with an ARM architecture processor is connected using fastening elements that can be replaced, a cooling element for the processor module 3, racks for the processor small form factor module 5, which are metal supports that are installed between the processor module 2 and the motherboard 1 and ensure that there is no physical contact between the processor module 2 and the motherboard 1, racks for attaching the processor module of an increased form factor 6, which are metal supports , which are installed between the processor module 2 and the motherboard 1 and ensure that there is no physical contact between the processor module 2 and the motherboard 1. 3 ill.

Description

Field of technology to which the utility model relates

The utility model relates to the field of personal mini-computers that provide operation in a trusted mode, with digital communication with the information infrastructure and user interaction with input-output devices as part of work in user programs, made with the ability to replace the processor module.

State of the art

The design of a PoE mini-computer based on CM4 is known (access mode https://aliexpress.ru/item/1005002668701972.html?sku_id=12000021630920329), which contains a metal case, a motherboard, a computing model, and a cooling fan.

However, this model does not allow quick replacement of the processor module; this model has fewer USB 3.0 ports and is made of metal sheets, i.e. does not have a vandal-proof housing.

The “Network Computing Device” is known (patent RU 211882 U1, G06F1/16, published 11/18/2021), which is a computing device that implements the modular principle of assembling functional boards, which allows you to replace parts of the device without the need to develop it anew.

The disadvantage of this solution is the need to develop a set of motherboard modules with different processor models, as well as to carry out installation work to adapt various modules.

The implemented device is devoid of these disadvantages, since it uses an edge connector of the SMARC 2.1 standard for quickly replacing a processor module, either a failed processor module, or for the purpose of upgrading and obtaining optimal performance characteristics.

Also close in meaning to the implemented device is the useful model “COMPUTER FOR WORKING IN A TRUSTED COMPUTING ENVIRONMENT” (RU 2666618 C1, G06F 21/71, G06F 21/82, published 09/11/2018), which allows you to create a computer with an increased level of security using a separate built-in hardware information protection device - resident security component (hereinafter referred to as RKB). This component is located within the perimeter of the device and is connected to the computer bus, providing privileged execution of its commands.

The disadvantage of this solution is the use of a separate device inside the computer to perform the security function. Minimal modifications to such a computer will allow you to bypass the RKB protection.

The proposed device is free from this drawback, since it uses a processor architecture different from the specified computer - ARM, as well as a distinctive property of this architecture - the ability to write cryptographic information to write-once processor memory, readable exclusively by the secure processor core.

A network server with a modular exchanger is known (CN 203689292 U, G06F 1/16, G06F 1/18, published 07/02/2014), which consists of a shell and a plurality of exchange modules, wherein the shell is equipped with a plurality of accommodating spaces. The network server framework is designed in a modular mode, and the number of exchanger modules can be increased or decreased in a mode where the user removes exchanger modules from the network server or inserts exchanger modules into the network server so that the requirement for actual use can be fulfilled. In addition, each heat exchanger module has a modular structure so that the size of each heat exchanger module is minimized and the goal of space saving is achieved. Therefore, the user can replace the TX block sets inside the exchange modules with single-mode TX block sets or dual-mode TX block sets according to the requirements of actual use; In addition, optical fiber slots formed in single-mode transceiver block sets or dual-mode transceiver block sets do not have spherical restrictions, so that the slots are ROSA optical fiber slots or TOSA optical fiber slots or RJ45 optical fiber slots.

The closest to the proposed device, adopted as a prototype, is the “Network Computing Device” (RU 211797 U1, G06F 1/16, published 06/23/2022), which refers to devices as part of hardware computer networks, and intended for use as part of trusted hardware computing platforms for critical information infrastructure in industry and telecommunications, the device consists of a housing, a printed circuit board with components and a power supply, while the printed circuit board is equipped with a 4-core processor with Intel 80x86 architecture with a computing performance of at least 11 GFLOPS and a universal Ethernet port, while The universal Ethernet port includes a network adapter, a combined RJ-45 and SFP connector footprint, and a flexible network of connections between the network adapter and connectors.

The disadvantages of the prototype are: in the prototype it is impossible to quickly replace the processor module; the housing of the device specified in the prototype does not have anti-vandal properties, the device is made of sheet metal; the device described in the prototype does not provide operation in a trusted mode.

Disclosure of the essence of the utility model

The technical problem solved by the claimed utility model is the creation of a trusted computing module, which makes it possible to provide trusted boot functions and control the launch of files in the operating system, to implement the ability to replace processor models while maintaining the functional composition of the computing module, which additionally leads to a reduction in the risk of defects during development and adjustment, reducing the cost of its production.

The technical result achieved by the claimed utility model is to expand the functionality and ensure the security of the trusted computing module by allowing the processor to be changed, including to a different model.

To achieve the technical result, a trusted computing module is proposed, containing a housing 7, in which a motherboard 1 is fixed with an edge connector MXM 3.0 of the SMARC 2.1 standard, to which a processor module 2 with an ARM architecture processor and a cooling element for the processor module 3 are connected using fastening elements that can be replaced , racks for the small form factor processor module 5, which are metal supports that are installed between the processor module 2 and the motherboard 1 and ensure that there is no physical contact between the processor module 2 and the motherboard 1, racks for mounting the large form factor processor module 6, which are metal supports that are installed between the processor module 2 and the motherboard 1 and ensure that there is no physical contact between the processor module 2 and the motherboard 1.

Moreover, a screw connection can be used as fastening elements.

Moreover, a housing 7 is attached to the motherboard 1 using a bolted connection, on the front panel of which there is a start button, and on the rear panel there is a power supply button.

Security is achieved through the use of an ARM architecture processor in conjunction with a distinctive property of this architecture - the ability to write cryptographic information to write-once processor memory, readable exclusively by the secure processor core. As a result, control over the performance of the trusted computing module is carried out by the same processor used for the main work, but only by a separate, secure part of it. Together with specially developed software: a bootloader, an operating system and a file launch control tool, the implemented device allows for trusted launch of the operating system and file launch control based on cryptographic information inside the write-once processor memory.

The ability to replace the processor is achieved by introducing a method of separating the model of processor module 2 into an independent electronic module connected via an edge connector to the high-density connector of the motherboard 1. This connection provides the output of all functional lines of the processor, including by assigning certain functions to the pin numbers of the plug-in connection, as well as the corresponding electrical requirements.

To ensure compatibility between different processor models, a fastening system is used that allows the installation of processor models of different form factors. This possibility is achieved due to a specific arrangement of racks on the motherboard 1, which allows, without any changes to the motherboard 1, the installation of processor models with different designs and system cooling of the processor model.

To connect processor module 2 to motherboard 1, the MXM 3.0 connector and SMARC 2.1 connection standard, which are the industry standard for industrial microcomputers and processor modules, were selected. The use of this standard significantly expands the possibilities of using processor modules from various manufacturers, since most modern ARM architecture processors are implemented in processor modules of this standard.

Thus, the essential features of the utility model are aimed at achieving a single technical result - expanding the functionality and ensuring the security of the trusted computing module by ensuring the change of the processor, including to a different model.

Brief description of drawings

The essence of the utility model is illustrated by drawings.

In fig. Figure 1 shows a trusted computing module with a vandal-proof housing, top view without cover.

In fig. Figure 2 shows a trusted computing module with a vandal-proof housing, a top view without a computing module cover and without a processor module cooling system, indicating the locations of motherboard racks for installing processors of various form factors.

In fig. Figure 3 shows a trusted computing module with a vandal-proof housing, viewed with the top cover closed.

The trusted computing module consists of a housing 7, which houses the motherboard 1, with components and external and internal interfaces, power supplies (not shown) (Fig. 1). At the same time, motherboard 1 is equipped with a quad-core ARM processor with four Cortex-A53 cores with a clock frequency of up to 2 GHz and a universal port of the SMARC 2.1 standard.

The use of an ARM architecture processor in conjunction with a distinctive property of this architecture - the ability to write cryptographic information to write-once processor memory, readable exclusively by the secure processor core. As a result, control over the performance of the trusted computing module is carried out by the same processor used for the main work, but only in a separate, secure part of it. Together with specially developed software: a boot loader, an operating system and a file launch control tool, the implemented device allows for trusted launch of the operating system and file launch control based on cryptographic information inside the write-once processor memory.

The trusted computing module (Fig. 2, 3) contains a motherboard 1 that serves as a carrier of the processor module 2, as well as internal and external interfaces, and the motherboard 1 has six holes intended for attachment to the housing 7,

processor module 2,

cooling element of the processor module 3,

fastening elements for the processor module 4,

racks for small form factor processor module 5, which are metal supports that are installed between the processor module 2 and the motherboard 1 and ensure that there is no physical contact between the processor module 2 and the motherboard 1. Designed for processor modules with smaller dimensions.

Racks for processor module of increased form factor 6, which are metal supports that are installed between processor module 2 and motherboard 1 and ensure that there is no physical contact between processor module 2 and motherboard 1. Designed for processor modules with large dimensions.

The ability to replace the processor is achieved by introducing a method of separating the processor module model 2 into an independent electronic module connected via an edge connector to the high-density motherboard connector 1. This connection provides the output of all functional lines of the processor, including by assigning certain functions to the pin numbers of the plug-in connection, as well as the corresponding electrical requirements.

To ensure compatibility between different processor models, a fastening system is used that allows the installation of processor models of different form factors. This possibility is achieved due to a specific arrangement of racks on the motherboard 1, which allows, without any changes to the motherboard 1, the installation of processor models with different designs and system cooling of the processor model.

To connect processor module 2 to motherboard 1, the MXM 3.0 connector and SMARC 2.1 connection standard, which are the industry standard for industrial microcomputers and processor modules, were selected. The use of this standard significantly expands the possibilities of using processor modules from various manufacturers, since most modern ARM architecture processors are implemented in processor modules of this standard.

Housing 7 (Fig. 2, 3) is designed to provide anti-vandal properties, as well as to provide heat removal from the processor module 2.

Housing 7 is made of aluminum, consisting of two parts: top and bottom panels. The bottom panel of the case is hollow. At the corners of the top panel there are two rectangular recesses with rounded corners, designed to change the level of motherboard 1 and peripheral devices (neural network modules, power management boards, etc.).

The housing 7 has six mounting holes 8 intended for fastening the motherboard 1, and the mounting holes 8 of the housing 7 located on the bottom panel of the housing 7 are coaxial with the mounting holes 8 on the motherboard 1. Securing the motherboard 1 into the housing 7 is possible by using a screw or clip connection. In both cases, fastening provides a fairly safe hold of the motherboard 1 inside the case 7. In addition to the mounting holes 8 for fastening the motherboard 1, at least one mounting hole 8 is made on the top panel of the case 7, which is necessary for securing peripheral devices necessary for the user (not shown ). On the front panel of the housing 7, closer to the left wall of the housing 7, there is a power button; on the rear panel of the housing 7, closer to the right wall of the housing 7, there is a power supply button (not shown).

On the motherboard 1 there are six mounting holes 8 intended for fastening to the bottom panel of the case 7, four mounting holes 8 for fastening the motherboard 1 to the bottom panel of the case 7 are located in the corners of the motherboard 1. Selection of two more mounting holes 8 for attaching the motherboard 1 to the bottom panel of the chassis 7 depends on the functionality of the trusted computing module and is selected depending on the order of arrangement and peripheral devices.

In this case, after fixing the motherboard 1 to the bottom panel of the case 7, using a screw or clip connection, the top panel of the case 7 is installed on the bottom panel of the case 7 using a screw connection. The mounting holes of the lower and upper panels of the housing 7 are coaxial.

There are ventilation holes on the bottom panel of the housing 7 (not shown in the drawings).

The cooling element of the processor module 3 is made in the form of a combination of the housing 7, radiators and fans (not shown). In this case, the housing 7, together with the radiator, distributes heat to itself and is additionally cooled using a fan.

The fastening elements of the processor module 4 are made in the form of screws, which in turn makes it possible to quickly replace the processor module 2, without additional installation work. The fastening elements of the motherboard 1 are also made in the form of four screws, which is a standard method of fastening devices of this type.

The Trusted Computing Module works as follows:

The device starts from the SD card. To start, you need to connect the power supply to the power supply and to the device. Turn on the power button on the back of the case 7. Press the start button on the front panel of the case 7. The device will boot itself and be ready for use.

The device can operate in trusted and untrusted mode. Initially, the device is shipped in untrusted mode and operates without providing a trust function. Before switching the device to trusted mode, you must first prepare an SD card with a trusted bootloader and operating system and insert the card into the appropriate slot on the front panel of the device (not shown).

To write cryptographic information to the write-once memory of the processor, you need to connect the device to the administrator’s computer via a USB cable, run the firmware program on the administrator’s computer with the necessary parameters, hold down the start button on the switched off device for 10 seconds and release. After this, the device will enter the processor firmware mode, perform steps to write information to the write-once memory and turn off automatically. You need to disconnect the device from the administrator's computer and turn on the device. The device will automatically start up and load the trusted bootloader and operating system. Switching the device to trusted mode is a one-time and irreversible operation. After the procedure of transferring to trusted mode, the device can only operate in trusted mode.

To replace processor module 2, no special tools or preliminary professional training are required: a screwdriver and the user of the device who is familiar with the design specified in the design documentation are sufficient. For this operation, it is necessary to unscrew the four screws connecting the bottom panel of the case 7 with the motherboard 1 and the top panel of the case 7. Remove the top panel of the case 7, providing access to the processor module 2. Unscrew the two clamping screws holding the processor module 2 and remove it from the socket . After replacing processor module 2, assembly is performed in the reverse order.

The proposed trusted computing module has a number of features and advantages compared to the prototype, aimed at achieving a technical result, expanding functionality and ensuring security:

- the use of processor module 2 with a SMARC 2.1 standard socket allows you to take advantage of the SMARC standard, which is focused on applications that require high performance with low power consumption,

- the ability to use the device in several operating modes has been implemented,

- implemented the ability to replace processor module 2 without installation work, without replacing the motherboard 1,

- the design has a larger number of external and internal interfaces,

- anti-vandal housing 7 is used, which, in addition to the protective function, also functions as a cooling system.

Claims (3)

1. A trusted computing module, consisting of a housing in which a motherboard with an edge connector MXM 3.0 of the SMARC 2.1 standard is fixed, to which a processor module with an ARM architecture processor, a cooling element for the processor module, and racks for the processor module are connected using replaceable fastening elements small form factor, which are metal supports that are installed between the processor module and the motherboard and ensure that there is no physical contact between the processor module and the motherboard, racks for attaching a processor module of increased form factor 6, which are metal supports that are installed between the processor module and motherboard and ensure that there is no physical contact between the processor module and the motherboard, and the case is made of aluminum and consists of an upper and lower panel, the bottom panel of the case is hollow, at the corners of the top panel of the case there are two rectangular recesses with rounded corners, designed to change the level of the motherboard boards, the case has six mounting holes intended for mounting the motherboard, and the mounting holes of the case located on the bottom panel of the case are coaxial with the mounting holes on the motherboard, and the motherboard is fixed in the case by means of a screw connection, in addition to the mounting holes for attaching the motherboard , on the top panel of the case there is at least one mounting hole necessary for securing peripheral devices. 2. Trusted computing module according to claim 1, characterized in that there are ventilation holes on the bottom panel of the housing. 3. Trusted computing module according to any one of paragraphs. 1 or 2, characterized in that a start button is located on the front panel of the housing, and a power supply button is located on the rear panel of the housing.