RSA encryption for embedded systems counters design cloning

August 22, 2014 // By Graham Prophet
Segger positions its emSecure as the first digital signature software package designed specifically for embedded systems. The emSecure module provides a selection of easy-to-use functions which allows the developer to easily add a digital signature to a product.

The module includes an implementation of the RSA public-key cryptosystem and everything else which is needed for digitally signing data. emSecure will generate keys, as well as sign messages and verify signatures, based on asymmetric encryption (RSA) and discrete logarithms (DSA).

emSecure can be used to authenticate firmware if the digital signature includes the unique ID of the microcontroller: No more cloning!

It can also ensure secure firmware updates for any kind of embedded device. This is critical on devices such as election machines, financial applications and other applications requiring secure licenses, serial numbers or sensitive data.

Based on RSA asymmetric encryption with two keys, it cannot be broken by reverse engineering. The source code has been designed and created, from the ground up, for embedded systems with no GPL or other open source license.

The emSecure Digital Signature module comes with everything needed, as source code, to generate the private and public keys, generate probable and provable primes, calculate secure hashes, encrypt and decrypt messages and create and verify digital signatures.

All parts of the package conform to the appropriate FIPS 186-4 specifications issued by NIST.

The Segger emLib is a collection of complex, hardware independent algorithms which are free from third party licenses. The code follows strict and efficient coding standards resulting in easy to use code, which is optimised for the lowest resource usage and highest performance. More information on emLib is available at: http://segger.com/emlib.html

Segger; http://segger.com/emlib-emsecure.html