Agilex™ 7 FPGAs and SoCs Device Overview

ID 683458
Date 10/31/2023
Public
Document Table of Contents

1.20. Device Security

Building on top of the robust security features present in the previous generation devices, Intel® Agilex™ FPGAs and SoCs include a number of new and innovative security enhancements. These features are also managed by the SDM, tightly coupling the device configuration and reconfiguration with encryption, authentication, key storage, and anti-tamper services.

The security services that the SDM provides include:

  • Bitstream encryption
  • Multi-factor authentication
  • Hard encryption and authentication acceleration: AES-256, SHA-256/384, and ECDSA-256/384
  • Volatile and non-volatile encryption key storage and management
  • Physically unclonable function (PUF) service
  • Updatable configuration process
  • Secure device maintenance and upgrade functions
  • Side-channel attack protection
  • Scripted response to sensor inputs and security attacks, including selective sector zeroization
  • Readback, JTAG and test mode disable
  • Enhanced response to SEUs
  • Platform attestation
  • Cryptography as a Service (CaaS)