UPGRADE YOUR BROWSER

We have detected your current browser version is not the latest one. Xilinx.com uses the latest web technologies to bring you the best online experience possible. Please upgrade to a Xilinx.com supported browser:Chrome, Firefox, Internet Explorer 11, Safari. Thank you!

cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted
Visitor engr_nadir
Visitor
273 Views
Registered: ‎06-13-2017

petalinux configuration driver security

Hi Everyone, 

 

I am making a flow, where I provide encrypted bitstream, and an application which can do the decryption of the bitstream and then do the configuration on FPGA. I am using petalinux (2017.4) on Zynq zc702. The application is made secure against reverse engineering, so that the decryption key cannot be extracted. 

 

Now I have only one problem that is the security of the driver.Because driver has access to unencrypted bitstream, and it can store it. I cannot use the internal decryption engine of the device, it is one of the project limitations. 

 

I am not sure if following two options are feasible.

1) Take devcfg driver code and integrate it inside the application, and protect the application against reverse engineering.

2) The application checks the integrity of the driver before using it for configuration, since I am providing bitstream and application to someone else who will build his own petalinux project, how can I make sure that I can check his configuration driver's integrity.

 

Thanks.

 

0 Kudos