Google, AMD, NVIDIA na Microsoft, dị ka akụkụ nke ọrụ Caliptra, emepụtala ihe mgbochi imewe mgbawa (IP block) maka itinye ngwaọrụ maka ịmepụta ngwaike ntụkwasị obi (RoT, Root of Trust) n'ime ibe. Caliptra bụ ngwaike dị iche iche nwere ebe nchekwa nke ya, nhazi na mmejuputa nke primitives cryptographic, nke na-enye nkwenye nke usoro buut, firmware eji na nhazi ngwaọrụ echekwara na ebe nchekwa na-adịghị agbanwe agbanwe.
Enwere ike iji Caliptra iji jikọta ngwaike nọọrọ onwe ya n'ime ibe dị iche iche, nke na-enyocha iguzosi ike n'ezi ihe ma na-ekwe nkwa iji firmware kwenye na ikike nke onye nrụpụta na ngwaọrụ ahụ. Caliptra nwere ike ime ka ọ dị mfe ma mee ka njikọ nke usoro nkwenye cryptographic ngwaike agbakwunyere n'ime CPUs, GPUs, SoCs, ASIC, ihe nkwụnye netwọkụ, draịva SSD na akụrụngwa ndị ọzọ.
Ngwa iguzosi ike n'ezi ihe nke cryptographic na ngwaọrụ nkwenye ziri ezi nke ikpo okwu na-enye ga-echebe akụrụngwa ngwaike site na iwebata mgbanwe ọjọọ na firmware wee chekwaa usoro nbudata na ịchekwaa nhazi iji gbochie mmebi nke sistemu bụ isi n'ihi mwakpo nke akụrụngwa akụrụngwa ma ọ bụ. ngbanwe nke mgbanwe obi ọjọọ na eriri ọkọnọ mgbawa. Caliptra na-enyekwa ikike iji nyochaa izi ezi nke mmelite firmware na data metụtara ikpo okwu (RTU, Root of Trust for Update), chọpụta firmware mebiri emebi na data dị oke egwu (RTD, Root of Trust for Detection), weghachi firmware na data mebiri emebi (RTRec). , Mgbọrọgwụ ntụkwasị obi maka mgbake).
A na-emepe caliptra na saịtị nke Open Compute Project, nke ezubere ịmepụta nkọwa ngwaike mepere emepe maka ịkwado ebe data. A na-ekesa nkọwa ndị metụtara caliptra site na iji Agreement Web Foundation Open (OWFa), emebere maka nkesa ụkpụrụ mepere emepe (dị ka ikikere isi mmalite maka nkọwapụta). Ojiji nke OWFa na-eme ka o kwe omume ịmepụta ngwaahịa nke onwe ha na mmejuputa mmepụta ihe na-adabere na nkọwapụta na-akwụghị ụgwọ eze ma na-enye ohere ka nzukọ ọ bụla sonye na mmepe nke nkọwapụta.
Ewubere isi mmejuputa ihe mgbochi IP na RISC-V processor SWeRV EL2 mepere emepe ma nwee 384KB nke RAM (128KB DCCM, 128KB ICCM0 na 128KB SRAM) na 32KB ROM. Algọridim nke cryptographic akwadoro gụnyere SHA256, SHA384, SHA512 ECC Secp384r1, HMAC-DRBG, HMAC SHA384, AES256-ECB, AES256-CBC na AES256-GCM.
isi: opennet.ru