Crypto module with USB interface

Objectif

The goal of the USB-Crypt project is to develop and integrate a powerful, but easily portable crypto module with an USB interface as a secure single chip IC. This IC module will contain all of the standard crypto algorithms like AES, DES, Hashing, RSA and ECC. It can then be mounted into an USB dongle like housing for universal use with an I&C equipment fitted out with an USB interface. Specific firmware in the controller part of the module will provide the elementary crypto functions and also low level operating system routines. A generic API will offer easy interfacing to host systems. The practical usability together with the system features will be tested by different security applications like: e-commerce, network security, data encryption and digital security. The overall security quality will be analysed and certified by a Common Criteria evaluation.

Objectives:
For realising high security electronic commerce and other information and communication security applications a high level security module is necessary: This should be inexpensive, fast and flexible enough to plug it in every critical IT equipment and protected against manipulations.
The objective of this proposal is to develop and test with some applications:
A hardware security module as a single chip integrated circuit (IC) with all necessary cryptographic functions (symmetrical, asymmetrical and hash algorithms), secure internal memory parts for storing keys and variables and an in module control processor for trusted control of the security functions.
An USB-interface to the applications world allows the use with every modern I&C equipment like PC's and other communication or data processing equipment. The implicit crypto control firmware and the host API supports the necessary crypto primitives and the elementary security operating system. The module/system will be tested with different applications like e-commerce, network security, data encryption and digital signatures. A CC analysis and certification will show the achieved quality.

Work description:
For reaching a high security level, we will use an advanced smartcard processor kernel (32Bit) as the basic element. This includes already the proved implicit smartcard security mechanisms for enhanced physical protection.
Fast and secure cryptographic hardware coprocessors will be added to this kernel:
.The new AES together with the traditional DES
.Fast universal hashing algorithm processor
.Asymmetric cryptographic coprocessor for ECC or up to RSA-2048A fast USB interface will allow the interfacing to all modern type of I&C equipment.

For controlling and programming the module we will integrate a minimal operating system kernel together with the necessary crypto primitives. This allows an easy integration of the modules functionality by the system developers. For an easy access from the host system we will provide a generic API. This allows also a platform independent operation by JAVA and similar techniques. For the testing of the performance and developing to the practical requirements we will also realise within this project some practical security applications (internet access, electronic signature, data encryption, e-commerce, etc.). For the use in real high level security applications we will show the quality of our system by formal certifying the hardware and the OS kernel according to the Common Criteria level EAL5.

Milestones:
M1: Requirements phase finished
M2: Finished specification phase
M3: Product Implementation/Development finished
M4: Crypto Coprocessors developed
M5: USB-Host driver API developed
M6: Integration and test of Hardware Firmware and host software
M7: Application Security Framework
M8: User Documentation
M9: Dissemination, Implementation
M10: Assessment and Evaluation
M11: Common Criteria Certification
M12-16: Applications

Champ scientifique (EuroSciVoc)

CORDIS classe les projets avec EuroSciVoc, une taxonomie multilingue des domaines scientifiques, grâce à un processus semi-automatique basé sur des techniques TLN. Voir: Le vocabulaire scientifique européen.

• sciences naturelles informatique et science de l'information internet accès à l’internet
• sciences naturelles informatique et science de l'information logiciel logiciel d’application logiciel système système d’exploitation
• sciences sociales économie et affaires entreprise et gestion commerce commerce électronique
• sciences naturelles informatique et science de l'information sécurité informatique sécurité du réseau
• sciences naturelles informatique et science de l'information science des données traitement des données

Programme(s)

Programmes de financement pluriannuels qui définissent les priorités de l’UE en matière de recherche et d’innovation.

• FP5-IST - Programme for research, technological development and demonstration on a "User-friendly information society, 1998-2002"

Thème(s)

Les appels à propositions sont divisés en thèmes. Un thème définit un sujet ou un domaine spécifique dans le cadre duquel les candidats peuvent soumettre des propositions. La description d’un thème comprend sa portée spécifique et l’impact attendu du projet financé.

• 2000-2.4.1 - Technology Building Blocks for Trust and Security

Appel à propositions

Procédure par laquelle les candidats sont invités à soumettre des propositions de projet en vue de bénéficier d’un financement de l’UE.

Régime de financement

Régime de financement (ou «type d’action») à l’intérieur d’un programme présentant des caractéristiques communes. Le régime de financement précise le champ d’application de ce qui est financé, le taux de remboursement, les critères d’évaluation spécifiques pour bénéficier du financement et les formes simplifiées de couverture des coûts, telles que les montants forfaitaires.

CSC - Cost-sharing contracts

Coordinateur

Participants (11)