Google, AMD, NVIDIA ndi Microsoft, monga gawo la polojekiti ya Caliptra, apanga chipika chotsegulira (IP block) chophatikizira zida zopangira zida zodalirika (RoT, Root of Trust) kukhala tchipisi. Caliptra ndi gawo lapadera la hardware lomwe lili ndi kukumbukira kwake, purosesa ndi kukhazikitsidwa kwa cryptographic primitives, zomwe zimapereka chitsimikizo cha ndondomeko ya boot, firmware yogwiritsidwa ntchito ndi kasinthidwe kachipangizo kosungidwa mu kukumbukira kosasunthika.
Caliptra itha kugwiritsidwa ntchito kuphatikiza zida zodziyimira pawokha mu tchipisi tosiyanasiyana, zomwe zimayang'ana kukhulupirika ndikutsimikizira kugwiritsa ntchito fimuweya yotsimikiziridwa ndikuvomerezedwa ndi wopanga mu chipangizocho. Calitra imatha kufewetsa ndikugwirizanitsa kuphatikiza njira zotsimikizira za hardware zolumikizidwa mu CPUs, GPUs, SoCs, ASICs, adapter network, SSD drives ndi zida zina.
The cryptographic umphumphu ndi kutsimikizika zida zotsimikizira zoperekedwa ndi nsanja adzateteza zida hardware ku kuyambitsa kwa njiru kusintha kwa fimuweya ndi kuteteza ndondomeko kutsitsa ndi kusunga kasinthidwe kuteteza dongosolo lalikulu kuti chisokonezeke chifukwa cha kuukira zigawo hardware kapena m'malo mwa kusintha koyipa kwa ma chip chain chain. Caliptra imaperekanso kuthekera kotsimikizira zosintha za firmware ndi data yokhudzana ndi nsanja (RTU, Root of Trust for Update), kuzindikira fimuweya yowonongeka ndi deta yovuta (RTD, Root of Trust for Detection), kubwezeretsa firmware yowonongeka ndi deta (RTRec). , Muzu Wodalirika Kuti Muchiritsidwe).
Caliptra ikupangidwa pamalo pomwe pali polojekiti yolumikizana ya Open Compute, yomwe cholinga chake ndi kupanga mafotokozedwe otseguka a zida zopangira zida za data. Zolemba zokhudzana ndi Caliptra zimagawidwa pogwiritsa ntchito Open Web Foundation Agreement (OWFa), yokonzedwa kuti igawidwe miyezo yotseguka (yofanana ndi chilolezo chotsegulira gwero lofotokozera). Kugwiritsiridwa ntchito kwa OWFa kumapangitsa kuti zikhale zotheka kupanga zogulitsa zawo ndi zotulukapo zotsatizana ndi zomwe zafotokozedwa popanda kulipira malipiro ndipo zimalola bungwe lililonse kutenga nawo mbali pakupanga ndondomekoyi.
Kukhazikitsa koyambira kwa IP block kumamangidwa pa RISC-V purosesa ya SWeRV EL2 yotseguka ndipo ili ndi 384KB ya RAM (128KB DCCM, 128KB ICCM0 ndi 128KB SRAM) ndi 32KB ROM. Ma aligorivimu a cryptographic omwe amathandizidwa ndi SHA256, SHA384, SHA512 ECC Secp384r1, HMAC-DRBG, HMAC SHA384, AES256-ECB, AES256-CBC ndi AES256-GCM.
Source: opennet.ru