AN 759: Using Secure Boot in Intel® Arria® 10 SoC Devices

ID 683060
Date 3/29/2021
Document Table of Contents

Intel® Arria® 10 SoC Secure Boot Architecture

You can implement secure boot using the following modules and features provided by the Intel® Arria® 10 SoC:
  • Security Manager
  • Boot ROM
  • ECDSA Authentication
  • Security Fuses
  • AES Decryption Engine
  • Security Key Storage

A dedicated Security Manager resides in the HPS. It supervises a secure initialization and boot of the system. The Security Manager determines the level of system security in the device by reading the HPS fuse settings after power-on reset (POR).

After the security level is determined, secure boot resources attempt to load software into HPS flash. The boot ROM supervises this bootstrapping process.