rebustness check list question 1.14
Question 1.14: Describe the method of provisioning the CI PLUS Trust Values, CI PLUS Trust Anchors, CI PLUS Private Keys, and CI PLUS Symmetrical Keys during the production of the Licensed Product. Include any preparation steps.
however, we are DTV chip vender and solution supplier, we are not the manufactory. these kind of key are stored in flash, not in our chip, and producing processing are controled by manufactory.
how can we anser this question?
just leave blank or write it according manufactory rule?
about rebustness check list item 1.14
3 posts
• Page 1 of 1
about rebustness check list item 1.14
by bill_li » Wed Jun 03, 2009 1:24 am
- bill_li
- Posts: 2
- Joined: Mon May 18, 2009 3:17 am
Re: about rebustness check list item 1.14
by shiller » Fri Oct 23, 2009 8:49 am
Hi,
As a component manufacturer you do not have to complete the Robustness Certification Checklist. Thist checklist is meant only for HOST and CAM manufacturers as a self assessment. Furthermore the forms attached to the ILA are not meant to be completed by the Licensees at the time when they sign the ILA. They are attached to the ILA for the sake of completeness. So you can leave the form empty and only select the checkboxes in section 1.23 for a "Licensed Component".
Stephan
As a component manufacturer you do not have to complete the Robustness Certification Checklist. Thist checklist is meant only for HOST and CAM manufacturers as a self assessment. Furthermore the forms attached to the ILA are not meant to be completed by the Licensees at the time when they sign the ILA. They are attached to the ILA for the sake of completeness. So you can leave the form empty and only select the checkboxes in section 1.23 for a "Licensed Component".
Stephan
- shiller
- Posts: 5
- Joined: Wed Apr 29, 2009 12:21 pm
Re: about rebustness check list item 1.14
by ElRabbit » Fri Oct 23, 2009 12:40 pm
Hi,
Even if you don't have to complete these steps yourself, your customer will have to, and that will be great added value for your solution if you can provided assistance filling this form.
Securing the transfer of credential during the production process is not an easy task. The factory environment is not especially secure (no secure access, large number of people, temp worker). So it is a good idea to add some kind of protection to credentials when they are transfered to final device. The chipset itself can implement security feature to ease these this, like serial number. If each set of credential is encrypted for a specific serial number that will reduce the risk of hacking.
Other feature are also useful in chipsets to comply with robustness rules, like ability to lock JTAG with a fuse or authentication of loaded code by ROM boot loader. These considerations shall be addressed at early stage in product development and not just before shipping
Regards
Even if you don't have to complete these steps yourself, your customer will have to, and that will be great added value for your solution if you can provided assistance filling this form.
Securing the transfer of credential during the production process is not an easy task. The factory environment is not especially secure (no secure access, large number of people, temp worker). So it is a good idea to add some kind of protection to credentials when they are transfered to final device. The chipset itself can implement security feature to ease these this, like serial number. If each set of credential is encrypted for a specific serial number that will reduce the risk of hacking.
Other feature are also useful in chipsets to comply with robustness rules, like ability to lock JTAG with a fuse or authentication of loaded code by ROM boot loader. These considerations shall be addressed at early stage in product development and not just before shipping
Regards
error is human, but a real disaster requires a computer
- ElRabbit
- Posts: 23
- Joined: Tue Sep 08, 2009 7:02 am
- Location: South of France
3 posts
• Page 1 of 1
Return to CI Plus Licensing and Testing
Who is online
Users browsing this forum: No registered users and 1 guest