Intel Stratix 10 Secure Device Manager (Sdm) - Intel Stratix 10 User Manual

1.1. Intel Stratix 10 Secure Device Manager (SDM)

The Secure Device Manager (SDM) is a triple-redundant processor-based module that
manages the configuration and security features of Intel Stratix 10 devices. The SDM
authenticates and decrypts configuration data.
Figure 1. Secure Device Manager
Figure 2. Secure Device Manager
Secure configuration includes the following steps:
• If you have enabled authentication, the SDM checks that a trusted source, the
device owner, has authorized the configuration bitstream.
• The SDM always performs an integrity check over the bitstream using SHA-256 or
SHA-384. This integrity check protects against intentional attacks and against
accidental corruption of the bitstream, such as a bad write to flash.
• If the configuration bitstream authenticates and you have enabled AES Encryption,
the SDM decrypts the data. The SDM drives the decrypted data on the
configuration network to Local Sector Managers (LSM) on the configuration
network. Each LSM parses the sector configuration block data and configures the
logic elements in the sector that it manages.
Related Information
Intel Stratix 10 Configuration User Guide: Secure Device Manager
® ®
Intel Stratix 10 Device Security User Guide
6
Intel Stratix 10 FPGA
Secure Device Manager
SDM Pins
Configurable Network Interface
Configuration Network
Local Sector Local Sector
Manager (LSM) Manager (LSM)
Configuration Configuration
Sector Sector
Local Sector Local Sector
Manager (LSM) Manager (LSM)
Configuration Configuration
Sector Sector
® ®
1. Intel Stratix 10 Device Security Overview
UG-S10SECURITY | 2020.01.15
Dual Purpose I/O
Intel Stratix 10 Blocks
(All Family Variants)
Send Feedback