AT517154B1 - Monitoring the startup process of an integrated circuit - Google Patents

Abstract

The invention relates to a method for monitoring the start-up of an integrated circuit (IC), wherein the starting operation using a located outside the integrated circuit start memory (SF), by means of a arranged in the integrated circuit start interface (SFI) with the integrated circuit is connected. In order to reduce the risk of manipulation of the start memory, it is provided that the hardware of the integrated circuit (IC) is given a non-variable duration for the boot process and when the predetermined time period is exceeded, the start interface (SFI) is disabled.

Description

description

MONITORING THE STARTING PROCESS OF AN INTEGRATED CIRCUIT TECHNICAL AREA

The invention relates to a method for monitoring the boot process (boot process) of an integrated circuit, wherein the starting process using a located outside the integrated circuit start memory, which is arranged by means of a arranged in the integrated circuit start interface with the integrated circuit connected is.

The present invention is in the field of electronic and logic circuits, in particular the so-called application-specific, integrated circuits or ASICs.

STATE OF THE ART

Logical or electronic circuits, which are realized as integrated circuits, today form the basis for any electronics, especially in computer technology. Usually, such electronic circuits or systems consist of electronic components or electronic circuits or so-called integrated circuits (ICs) housed and wired together on a single substrate (eg semiconductor substrate, etc.). An integrated circuit thus consists of a large number of different types of components and interconnecting conductor tracks on or in a monocrystalline substrate. Only through this integration is it possible to provide extensive functionality and applications in a small space. Integrated circuits make a large number of applications (eg in mobile devices, SIM cards, RFIDs, mobile phones, etc.) technically feasible, since otherwise these applications are often too expensive, too complex, too power-intensive or too large (eg for installation in the respective device, etc.) would be. If such logic or integrated circuits are created for specific applications, these circuits are also referred to as application-specific integrated circuits or as an application-specific integrated circuit or ASICs for short.

A downsizing of devices and a steadily increasing degree of integration have led to the fact that meanwhile entire systems, e.g. with processors, controllers, memory devices (such as RAMs, ROMs, etc.), power management and other components housed on a so-called chip or die. Such systems are also referred to as single-chip systems or system-on-chip (SoC) and used above all in the mobile sector, for Em-bedded computers, smartphones, CD and DVD devices and everywhere in applications where small dimensions with relatively high performance and a variety of tasks are required.

In a system-on-chip (SoC) or single-chip system, all or a large part of the functions of the system are integrated on the chip - d. H. in an integrated circuit on a semiconductor substrate. Usually today system-on-chips or single-chip systems are no longer completely new developed, but designs are based at least partially on already existing and / or purchased components - so-called IP core units or IP blocks (eg Processor, controller units, peripheral blocks, etc.). These IP blocks are used e.g. purchased as a finished unit or through design licenses and then used in a new one-chip system directly or in an adapted form. Missing units for the one-chip system can then be e.g. developed for the finished ASIC. The units of such a one-chip system are connected internally via a bus system.

Integrated circuits can be realized by a so-called Field Programmable Gate Array (FPGA). An FGPA is a digital integrated circuit (IC) into which a logic circuit can be programmed. Programming here means that its function structure is defined. When programming the interconnection of the specified

Elements, the mode of operation of individual blocks in the FPGA and their interconnection are defined. Through the specific configuration of internal structures, different circuits can be realized in an FPGA, up to highly complex circuits, such as microprocessors. FPGAs are mainly used where fast signal processing and flexible circuit changes are needed, for example, to make subsequent improvements to the implemented functions, without having to change the physical hardware directly.

The essential basic structure of an FPGA is a field (English array) of basic blocks, each with a simple programmable lookup table (LUT) and a 1-bit register (flip-flop). The programming of the desired function is done by the deposition of the defining truth table in the SRAM cells of the LUT, the function calculation by reading the memory address determined by the inputs. In addition to the LUTs, the interconnection of the components in high degrees of freedom can also be configured on the FPGA. For connections over long distances, there is a grid of bus structures between the basic blocks to which inputs and outputs can be connected. Other programmable switching components in the crossing points of the grid allow the signal distribution over the entire chip.

Input / output blocks are used for communication with the outside world, via which the terminals of the FPGA are connected to the switching matrix. Clock generators generate all the internal clocks required for the application based on clocks provided at the inputs. Complex FPGAs include additional hard-wired functions, such as: B. memory blocks (so-called block RAM).

[0009] FPGAs found in the area of system-on-chip (SoC) applications have a number of mostly complex hard cores to accommodate a complete system. Hard cores are fixed and unchangeable circuits of mostly complex function blocks, such as microcontrollers or Ethernet interfaces.

The programming of the LUTs of an FGPA and the interconnect structures is typically done once prior to each use, thereby configuring the FPGA to a specific function. This is necessary because the FPGA loses its configuration by switching off the operating voltage.

Regardless of whether the integrated circuit is now implemented as FPGA or not, this usually includes a separate memory unit (boot ROM) with appropriate program code on the chip to initialize the integrated circuit. However, for space reasons, other programs, such as for starting the integrated circuit function, such as the so-called second level boot code, are not stored in the integrated circuit but are stored in dedicated electronic flash memories, e.g. Flash devices, which are located on the same board as the integrated circuit.

A flash memory, more particularly a Flash EEPROM, is a nonvolatile electronic memory device whose stored information can be erased electrically, whereby always certain blocks can be erased and reprogrammed.

During the boot process, the launcher, usually in several program parts, copied from the flash memory in the main memory of the integrated circuit and executed from there. External interference may manipulate or completely replace the contents of the flash memory. This has a negative impact on the safety of the integrated circuit.

So far, this danger has been addressed for example by means of the so-called "trusted boot" principle. In doing so, the boot process is linked to a check of the integrity of the hardware. For example, prior to the actual boot process, a so-called "Core Root of Trust Measurement" (CRTM) module examines the underlying hardware and stores a signature metric in a protected memory area, which information is then used at startup to decide whether that is the underlying lying system is trusted.

However, this review has the disadvantage that it is done by means of software that itself can be manipulated again.

From the document WO 2014/142659 A1, in addition to a data storage unit and a computer system with this data storage unit, a method for safely booting up a computer unit or for a secure remote access to software applications is known. Software applications are checked by the data storage unit during loading for virus programs and / or other unauthorized data programs. For this purpose, the data storage unit has an access controller with a memory unit in which reference time sequences are stored. These reference time sequences are e.g. at startup of the computer system or when connecting the data storage unit from the access controller compared with a time sequence of a monitoring signal and assuming that no malware is present. However, the method described in WO 2014/142659 A1 has the disadvantage that the reference time sequences are determined when the data storage unit is put into operation - e.g. monitors a data sequence (e.g., boot sequence) once or more and learns a reference time sequence therefrom. This can not be ruled out that the data sequence is manipulated or so-called malware contains and this is learned.

Furthermore, the document US 2014/0313840 A1 describes an integrated circuit with a programmable memory unit and a boot-up process, which e.g. can be started as soon as possible with the appropriate power supply. For this purpose, a so-called boot-up unit is provided, from which a number of starts of a periodic signal is counted, after a stable power supply is present, and from which a start-up signal is sent out when the counted number of starts exceeds a predetermined number. Although a memory unit can be booted up again very quickly, there is no check for manipulations in a start memory or monitoring of the starting process.

PRESENTATION OF THE INVENTION

It is an object of the present invention to provide a method for monitoring the starting process, which reduces the risk of manipulation of the start memory.

This object is achieved by a method having the features of claim 1, wherein the starting operation using a located outside the integrated circuit start memory, which is connected by means of a arranged in the integrated circuit start interface with the integrated circuit is.

According to claim 1 is provided in the method for monitoring the startup process of an integrated circuit that is predetermined by the hardware of the integrated circuit a non-variable period of time for the boot process and the start interface is disabled when the predetermined time is exceeded. The amount of time needed for the startup process is preferably set at the time of manufacture of the integrated circuit with at least one electronic programmable fuse included in the integrated circuit.

The fact that only a limited time is provided for the boot process, booting or initialization, namely only those that experience has shown that it is necessary for the boot process, can be prevented by manipulation of the boot memory longer, inadmissible Programs are used. In addition, the use of a CPU debugger prevents the integrated circuit from being spied on, because a CPU debugger usually also requires a longer time than that for the boot process.

Since the inventive lock the start interface is immutable in hardware in the form of an electronically programmable backup, and not by software, realized, it can not be circumvented by manipulation attempts. Such electronic

Backup is also called eFUSE. For the stated purpose, several eFUSEs are usually necessary. These fuses are hardware components that can be electrically programmed once, but this programming is then no longer changeable. During programming, the fuse is blown with the aid of a supplied fuse voltage.

The time required for the startup process can most easily be measured by a time switch (timer) of the integrated circuit designed as a subcircuit.

In particular, it can be provided that the unlocking of the start interface is done exclusively by a power-on reset signal. Thus, if the time duration specified by the timer for the starting process has been exceeded, and consequently the start interface is disabled, a new starting process can only be carried out again if the time switch (timer) is restarted by a so-called power-on reset.

An integrated circuit usually has additional interfaces in addition to the start interface. If these are already released at the beginning of the boot process, ie if the boot process (booting) has not yet been completed, an unauthorized modification of programs or program parts, in particular of the boot program, can also take place via the further interfaces. In this respect, provision can be made for at least one further interface of the integrated circuit to be released as a function of the progress of the starting process. This additional interface is therefore locked at the beginning of the boot process.

In particular, it can be provided that the further interface of the integrated circuit is released only after completion of the boot process.

The start memory is preferably designed as a serial flash memory.

An integrated circuit according to the invention comprises at least one start interface, by means of which a start memory can be connected to the integrated circuit, and is characterized in that in the integrated circuit, a hardware unit is provided, which is designed such that after a predetermined, not changeable, time period for the starting process, the start interface is blocked. For this purpose, the hardware unit has at least one electronically programmable fuse in which the time duration can be set at the time of manufacture of the integrated circuit.

The preferred embodiment of the integrated circuit provides that the hardware unit has a timer executed as a sub-circuit. In addition, the hardware unit may be designed such that at least one further interface of the integrated circuit is enabled as a function of the progress of the startup process. In particular, the further interface can be released only after expiration of the predetermined time for the startup, not changeable.

The release and blocking of the start interface and optionally the other interface can be achieved by the hardware unit is designed so that these interfaces is preceded by a dynamic interface release.

BRIEF DESCRIPTION OF THE FIGURES

To further explain the invention, reference is made in the following part of the description to the figures, from the further advantageous embodiments, details and further developments of the invention can be found. The figures are to be understood by way of example and are intended to set out the inventive character, but in no way restrict it or even render it conclusively. FIG. 1 shows a schematic representation of an integrated circuit according to the state of the art. FIG

TECHNOLOGY FIG. 2 shows a schematic representation of an integrated circuit according to the invention

EMBODIMENT OF THE INVENTION

For the integrated circuit IC only the essential units of the invention are shown in the figures. In addition, it can and usually will contain additional units, such as input / output units, controllers, additional interfaces, additional processors, memory.

In Fig. 1 there is shown a prior art integrated circuit IC having a processor CPU and a random access memory RAM, CPU and RAM being connected via an interconnect I, e.g. a bus system, interconnected. Also connected to the interconnection system are an internal Boot ROM (B-ROM), an interface for the SFI (Serial Flash Interface) as well as an interface for a Mass Storage Interface (MSI). All mentioned units are part of the integrated circuit IC.

On the same assembly as the integrated circuit IC, but not as part of the integrated circuit IC, a start memory SF is provided and designed as a serial flash memory (serial flash). The start memory SF is permanently connected to the interface SFI.

Likewise, on the same board as the integrated circuit IC, but not as part of the integrated circuit IC, a mass storage (Mass Storage) MS may be provided, which is firmly connected to the corresponding interface MSI. Or the mass storage MS could be releasably connected to the interface MSI, such as SD card. The MSI interface is already enabled during the startup process.

After a power-on reset or a restart, the integrated circuit must be initialized. That is, after the application of an operating voltage, the integrated circuit is selectively transferred to a defined initial state. This is necessary because integrated circuits include both combinational functions (logic gates) and memory elements such as flip-flops or RAM cells. These may behave unpredictably for the sake of mutual influence and the physically slightly different application of power during the switch-on time and thus also assume unpredictable states even after switching on. Thus, the entire integrated circuit is in an undefined state and works incorrectly or not at all.

During initialization, the processor CPU accesses the boot memory B-ROM, which is represented by an arrow. During this startup process, however, also superposed program parts are loaded into the main memory RAM, so-called "second level boot code", which is stored on the start memory SF, see corresponding arrow During operation, other programs and / or data are transferred into the main memory RAM loaded, which are stored on the mass storage MS, and which are also necessary for the subsequent normal operation of the integrated circuit.

During the boot process (= boot, = Initialisierens) could now be carried out from outside the integrated circuit IC without authorization manipulation of the start memory SF and / or the mass storage MS, so that the startup process is not completed correctly and the integrated circuit IC the Normal operation can not or not properly record. Or, during the startup process, a CPU debugger could unauthorizedly spy on the integrated circuit IC via one of the interfaces SFI or MSI.

This is prevented by a circuit according to the invention shown in FIG. 2: This integrated circuit IC is basically the same as that shown in FIG. 1, but has a hardware unit according to the invention, which is integrated in the integrated circuit IC. The hardware unit basically consists of the following units connected to each other: a timer (boot timer) BT, at least one electronic programmable fuse (eFUSE) EF and a dynamic cutting part enable DIF.

The dynamic interface release DIF is arranged in front of the interface SFI for the start memory and the interface for the mass storage MSI and can enable or disable these interfaces. This dynamic interface release DIF is thus located between start memory SF and mass storage MS on the one hand and the interfaces SFI and MSI on the other hand.

The electronic programmable fuses (eFUSEs) EF are programmed in the production of the integrated circuit IC the time required for the booting process. At startup, the integrated circuit timer BT begins counting and is stopped by the eFUSEs at the pre-programmed time. The dynamic interface enable DIF then blocks access to the interface SFI for the start memory, so that via this interface from the outside, no connection to the integrated circuit IC can be established any more.

The dynamic interface release DIF further ensures that the interface MSI is blocked for the mass storage MS during the boot process and is released only after completion of the boot process. This ensures that no manipulation can be made via the MSI interface during startup.

When the boot process has been performed properly, the data of the start memory SF has been completely loaded into the random access memory RAM, and optionally also the data from the mass memory MS, and the integrated circuit IC can properly start its normal operation.

If a manipulation at the start memory SF or an unauthorized access via the interface SFI takes place during the startup process, these are terminated after the preprogrammed period of time anyway by the lock of the interface SFI. The lock of the interface SFI can only be canceled by a power-on reset, because only in this way the timer BT can be restarted.

In principle, it is possible to provide a plurality of time switches BT with associated programmable eFUSEs EF, so that a timer BT the time to lock the interface for the start memory SFI counts, while a second timer specifies a different (shorter) period of time whose expiration the interface MSI for the mass storage is released. REFERENCE LIST: B-ROM internal boot memory (Boot ROM) BT timer (boot timer) CPU processor DIF dynamic interface enable EF electronic programmable fuse (eFUSE) I connection unit IC integrated circuit MS mass storage MSI interface for mass storage ( Mass Storage Interface) RAM RAM SF Start memory (Serial Flash, serial Flash memory) SFI interface for the start memory (Serial Flash Interface)

Claims (14)

claims A method for monitoring the start-up of an integrated circuit (IC), wherein the starting operation using a located outside the integrated circuit start memory (SF), which by means of an integrated circuit arranged in the start interface (SFI) with the integrated Circuit is connected, characterized in that the hardware of the integrated circuit (IC) an unchangeable time duration is predetermined for the startup process and when the predetermined time period is exceeded, the start interface (SFI) is disabled, and that the time period at the time of manufacture of the integrated circuit (IC) with at least one electronic programmable fuse (EF) included in the integrated circuit. 2. The method according to claim 1, characterized in that the time period is measured by a time-configured as a sub-circuit timer (BT) of the integrated circuit. 3. The method according to any one of claims 1 to 2, characterized in that the unlocking of the start interface (SFI) takes place exclusively by a power-on reset signal. 4. The method according to any one of claims 1 to 3, characterized in that at least one further interface (MSI) of the integrated circuit (IC) is released in dependence on the progress of the boot process. 5. The method according to claim 4, characterized in that the further interface (MSI) of the integrated circuit (IC) is released only after completion of the boot process. 6. The method according to any one of claims 1 to 5, characterized in that the start memory (SF) is designed as a serial flash memory. 7. The method according to any one of claims 1 to 6, characterized in that the hardware of the integrated circuit (IC) an unchangeable time until the release of a mass storage (MS) is specified. 8. Integrated circuit (IC) for carrying out a method according to one of claims 1 to 7, comprising at least one start interface (SFI), by means of which a start memory (SF) can be connected to the integrated circuit, characterized in that in the integrated circuit, a hardware unit (EF, BT, DIF) is provided, which is designed so that after the expiration of a predetermined, non-changeable time for the start, the start interface (SFI) is disabled, and that the hardware Unit (EF, BT, DIF) has at least one electronically programmable fuse (EF), in which at the time of manufacture of the integrated circuit (IC), the period is adjustable. 9. An integrated circuit (IC) according to claim 8, characterized in that the hardware unit (EF, BT, DIF) has a sub-circuit running timer (BT). 10. Integrated circuit (IC) according to one of claims 8 to 9, characterized in that the hardware unit (EF, BT, DIF) is formed so that at least one further interface (MSI) of the integrated circuit in dependence on the progress of Startup is released. 11. Integrated circuit (IC) according to claim 10, characterized in that the further interface (MSI) is released after expiration of the predetermined for the starting process, not changeable time duration. 12. An integrated circuit (IC) according to any one of claims 8 to 11, characterized in that a start memory (SF) designed as a serial flash memory and connected to the integrated circuit (IC). 13. Integrated circuit (IC) according to one of claims 8 to 12, characterized in that the hardware unit (EF, BT, DIF) is designed such that the start interface (SFI) and optionally the further interface (MSI) a dynamic cutting part release (DIF) is connected upstream. 14. Integrated circuit (IC) according to one of claims 8 to 13, characterized in that the hardware unit (EF, BT, DIF) is designed so that a non-variable period of time until the release of a mass storage (MS) is specified. For this 1 sheet drawings