Cloud native EDA tools & pre-optimized hardware platforms
In today's tech-driven world, security and safety are more critical than ever, especially in the automotive sector. As cars become smarter and more connected, the need for robust cryptographic mechanisms to safeguard data and ensure secure communications grows. For decades, the automotive industry has been implementing numerous strategies to maintain vehicle safety. But now the industry is starting to recognize that these efforts are futile if the vehicle's security is breached. A compromised vehicle can nullify almost any safety feature, creating substantial dangers for passengers and other road users. Consequently, ensuring both safety and security is critical in the design of today's vehicles, since there can be no safety without security.
One essential component in the security infrastructure that modern vehicles require is the True Random Number Generator (TRNG). TRNGs are expected to produce high quality random numbers, which are crucial for preventing security breaches and maintaining data integrity.
Modern connected and autonomous vehicles are increasingly dependent on internal and external secure communication systems to perform a variety of critical functions. These include inside-vehicle interactions, but also vehicle-to-vehicle (V2V), where cars communicate with each other to share information about road conditions and traffic, vehicle-to-infrastructure (V2I), where vehicles exchange data with traffic signals, road sensors, and other infrastructure elements to optimize traffic flow and enhance safety, and vehicle-to-cloud (V2C) for over-the-air updates, remote diagnostics and control.
However, this significant increase in connectivity also brings a heightened level of risk. The more connected a vehicle is, the more potential entry points there are for cyber threats. Unauthorized access to a vehicle’s communication system could lead to a range of dangerous scenarios, from the compromise of personal data to the manipulation of critical vehicle functions, potentially endangering the lives of passengers and other road users.
In this context, a TRNG is a crucial component for safe and secure solutions for several reasons:
Without a reliable TRNG, the security of vehicles will be at risk, leading to potentially severe consequences.
Includes in-depth technical articles, white papers, videos, upcoming webinars, product announcements and more.
Several standards and certification associations drive specifications and validation methods for TRNGs to define the guidelines for design and certification of truly random solutions that are resilient against attacks. One representative example is the National Institute of Standards and Technology (NIST) that has released a set of standards widely adopted in the industry:
NIST also manages the Federal Information Processing Standards (FIPS) 140-3 that outlines the security requirements for cryptographic modules like TRNGs to ensure compliance and certification.
Other standards that are important when it comes to TRNGs include BSI AIS 20/31, a set of technical guidelines issued by the German Federal Office for Information Security (BSI) that define requirements and evaluation methodologies for deterministic and physical RNGs.
By adhering to all these standards, TRNGs can produce high-quality random numbers that are suitable for cryptographic use, providing a robust foundation for secure communications.
When designing TRNGs for the automotive market, two additional certification standards are essential. The first is ISO 26262, which focuses on the functional safety of electrical and electronic systems in road vehicles. This standard provides guidelines for the entire lifecycle of automotive systems, ensuring that safety is integrated into every stage of development.
The second important standard is the more recently introduced ISO/SAE 21434, which addresses automotive cybersecurity. It outlines requirements for managing cybersecurity risks in the development and production of automotive systems, thereby protecting vehicles against cyber threats. Adhering to these standards ensures that TRNGs provide high-quality random numbers and meet the stringent safety and security requirements of the automotive industry.
For many years already, Synopsys offers silicon proven digital TRNG solutions that combine conditioning circuits with noise sources to provide automatic seeding of the random number stream and ongoing sources of entropy. For Synopsys TRNG the noise source does not depend on process specific circuitry and is therefore highly portable across technologies and processes.
Additional to these market-leading TRNG solutions, Synopsys has now taken another significant step forward by launching the industry’s first certified standalone TRNG IP for the automotive market that is compliant with the ISO 26262 and ISO/SAE 21434 standards. This innovative product highlights Synopsys' leadership and commitment to delivering cutting-edge automotive security and safety solutions.
Figure 1: High-Level Diagram of Synopsys Automotive NIST TRNG
The Synopsys TRNG for Automotive integrates seamlessly into automotive systems, generating high-quality random numbers essential for cryptographic applications. It is designed with a focus on reliability, security, and compliance with industry standards, making it a trusted choice for automotive manufacturers.
Synopsys TRNG for Automotive is certified for ASIL B compliance and protects against random and systematic faults. This compliance is critical for automotive safety applications, where reliability and fault tolerance are paramount. The TRNG also meets the stringent safety process and documentation requirements of ISO 26262, achieving ASIL D compliance for systematic faults, the highest safety integrity level for automotive applications.
Synopsys TRNG for Automotive incorporates several advanced safety mechanisms to ensure its reliability. These redundancy and fail-safe mechanisms maintain functionality and safety even in the event of certain failures. They include:
The comprehensive functional safety documentation provided by Synopsys includes the Quality Manual, Design Failure Mode and Effects Analysis (DFMEA), Failure Modes, Effects and Diagnostic Analysis (FMEDA), Safety Manual, Safety Case Report, Dependent Fault Analysis (DFA), and ISO 26262 Assessment Report.
Furthermore, Synopsys TRNG for Automotive also aligns with the ISO/SAE 21434 cybersecurity process requirements, ensuring it adheres to the latest standards in automotive cybersecurity. For security purposes, the TRNG includes functions like:
The cybersecurity deliverables include several documents such as the Threat Model and Security Risk Analysis Report, Cybersecurity Case Report and Cybersecurity Assessment Report.
The compliance with ISO/SAE 21434 guarantees that the TRNG not only meets safety standards but also addresses the mandatory requirements for robust cybersecurity measures in modern vehicles.
The automotive industry is evolving rapidly, and the need for robust security and safety mechanisms is more critical than ever. Synopsys' standalone TRNG for Automotive represents a significant milestone. By providing a TRNG that meets the highest levels of certification, Synopsys is setting a new standard for automotive security and safety.
This IP not only ensures the generation of high-quality random numbers but also meets the stringent requirements of ISO 26262 and ISO/SAE 21434. With its robust security features, easy integration, and scalability, the Synopsys TRNG for Automotive is set to become an essential component in developing secure and safe connected autonomous vehicles.
In conclusion, Synopsys' new TRNG for Automotive highlights the company's market leadership and commitment to advancing automotive security and safety with a broad and ever-growing IP portfolio. As vehicles become more connected and autonomous, the importance of reliable and secure TRNGs cannot be overstated.
In-depth technical articles, white papers, videos, webinars, product announcements and more.