【应用手册】AN 589: Using the Design Security Feature in Cyclone III LS Devices

【应用手册】AN589:UsingtheDesignSecurityFeatureinCycloneIIILSDevices

ThisapplicationnotedescribesthedesignsecurityfeatureinCyclone®IIILSdevices.

Thedesignsecurityfeatureisabletodecryptaconfigurationbitstreamusingan

industrystandard256-bitadvancedencryptionstandard(AES)keyandAES

encryptionalgorithmtoprotectyourdesignsfromthefollowingunauthorized

activities:

■Copying

■Reverseengineering

■Tampering

Thefollowingdesignfeaturesmakethesolutionsecure:

■CycloneIIILSdevicesdonotsupportconfigurationfilereadback.Thisprevents

attemptstoreadbacktheconfigurationfileafteritisdecrypted.

■Twouser-defined256-bitsequencesarerequiredtogeneratethe256-bitAESkey.

■Thevolatile256-bitAESkeyisstoredintheCycloneIIILSdeviceandcleared

whentheexternalbatteryisremoved.

■Dependingonthesecuritymode,youcanconfiguretheCycloneIIILSdevice

usingaconfigurationfilethatisencryptedwiththesamekey,orconfigurewitha

normalconfigurationfileforboardleveltesting.AN589:UsingtheDesignSecurityFeatureinCycloneIIILSDevicesSeptember2009AN-589-1.0ThisapplicationnotedescribesthedesignsecurityfeatureinCycloneIIILSdevices.Thedesignsecurityfeatureisabletodecryptaconfigurationbitstreamusinganindustrystandard256-bitadvancedencryptionstandard(AES)keyandAESencryptionalgorithmtoprotectyourdesignsfromthefollowingunauthorizedactivities:■C