Security Overview for SDM-Based FPGA Devices

ID 794424
Date 2/29/2024

2.2. Authentication

The SDM verifies that a bitstream or command originates from the device owner and has not been changed since creation when the authentication feature is enabled. The SDM performs this verification using digital signatures applied to the bitstream or command. The SDM uses a key programmed into fuses to validate the applied digital signatures. The key identifies the device owner, and its presence in fuses enables the authentication feature. Once authentication is enabled, it may not be disabled. Authentication is the base security feature for Altera® devices with an SDM. No other security features may be enabled without first enabling authentication.