跳转到主要内容

安全性

瑞萨安全使命

瑞萨电子致力于打造并维护可靠的安全基础,为我们的产品和客户的解决方案建立长期的信任。

图像

 

瑞萨安全承诺

十多年来,瑞萨电子一直致力于设计和生产用于安全 MCU 的微型计算机。 我们致力于持续投资于领先的新产品开发所需的专业技术和设备,因此瑞萨电子完全有能力满足当今互联产品对安全性的更高需求。

瑞萨电子的安全 MCU 具有防篡改设计,包括金属屏蔽、不规则排列和多层布线、安全检测器、加密协处理器和片上安全逻辑等功能。 为了帮助应对各种安全威胁,瑞萨电子的智能卡微型计算机针对电流分析、物理分析、故障分析和故障攻击采取了多种先进的应对措施。

因此,我们的产品已在全球金融和移动通信等各个领域得到了广泛的应用。 这使我们能够将先进的安全技术转移到汽车、工业和消费电子领域。

引领安全技术

瑞萨电子拥有先进且成熟的安全技术,包括广泛用于智能卡和嵌入式安全市场的微控制器中的物理安全技术,在开发安全认证产品和生产基础设施方面拥有十多年的经验,这些产品和基础设施均符合通用标准(ISO 15408)和 NIST CMVP 等行业标准。

安全标准和实证举措

瑞萨电子致力于塑造国家和国际安全标准,并积极参与各类工业和学术安全倡议。

汽车网络安全:

  • ISO/SAE 21434 JWG
  • 与 JASPAR 和 JSAE 合作
  • SAE J3101《地面车辆硬件应用保护安全要求》

工业控制系统安全:

  • IEC 62443 DKE 的贡献成员
  • 民用基础设施平台™(CIP)项目,旨在符合 IEC 62443 等安全标准

政府计划和学术倡议 :

  • NEDO,日本政府组织的战略创新促进计划
  • 与 ECSEC(电子商务安全技术研究协会)合作开发物联网系统安全加密单元(SCU)
  • 与横滨国立大学联合研发,开发新一代硬件安全技术,实现创新的安全解决方案和产品
图像
图像

汽车网络安全

图像
图像

工业控制系统安全

图像
图像

政府计划和学术倡议

安全性 应用

视频和培训

Secure OTA for MIRACLE Secure OTA IoT

Secure OTA for MIRACLE Secure OTA IoT

Miracle Linux Corporation

MIRACLE Secure OTA is a cloud system that realizes secure data deployment and updates that can be used by RZ/G. The premise is that the IoT device will be connected to the internet, and because a lot of people will be able to access it network-wise and physically, it will be exposed to various threats that were not there before. Here, in order to avoid unauthorized operation, it is important to update as a countermeasure once a weakness is spotted, and to control unexpected behavior by preventing such as unauthorized logins and software intrusion.

MIRACLE Secure OTA uses various certification and performs mutual authentication of the developer and the device, preventing unauthorized software to enter the IoT device. The developer will be given a developer certificate and authenticated in order for them to use the MIRACLE Secure OTA. Once the developer uploads an update file, it will be signed at the MIRACLE Secure OTA cloud. The MIRACLE Secure OTA cloud checks the product certificate of the destination device, and verifies if it is a regulated device. In RZ/G’s case, the product certificate is stored in the security region TSIP. Because the certificate cannot be controlled from the outside, the certificate’s safety can also be secured. When the distribution is performed, the update file will be downloaded only for the device that has a certificate. The electric signature and the product certificate will be compared, and only the correct software will be applied. By using this system, you will be able to prevent the application of unauthorized software and tampering of content by rogue developers, and protect the correct operation of IoT devices. As the distributable data ranges from a few bytes up to several gigabytes, it can widely support from the modification of minute contents to the major version upgrade of firmware and OS level.

工具集资源