In the mobile space the target applications include authentication for secure social media, digital POS, secure cloud storage and management of files and streaming media content provisioning on phones and tablets.
When using Quiddikey-FLEX, the secret key programming can be done by users and/or apps in the after-market (e.g. after a handset or tablet is already in the field), so no personalisation phase in a secure environment is required, nor an involvement from the chip or module manufacturer. Every application can simply program its own secret key(s) into Quiddikey-FLEX.
Quiddikey-FLEX has been designed to offer storage for an unlimited number of secret keys: device-specific or so-called ‘intrinsic’ keys and user-defined keys (e.g. with DRM info) of different lengths can be combined, supporting key lengths up to 256 bit symmetric, 512 bit ECC and 4096 bit RSA.
The Quiddikey-FLEX is available as purely digital logic IP to easily integrate in hardware into any process node. When considering typical mobile use cases the Quiddikey-FLEX IP core offers secret key storage with an area efficiency of at least 5 times better than alternatives like e-fuse technology.
The Quiddikey-FLEX product is also available in a software version and on FPGA platforms.
The secret keys used in HIS are not stored in embedded non-volatile memory but extracted from the hardware properties of a chip inside the device, e.g. a phone or tablet, like an electronic fingerprint of the device. This fingerprint extraction is only done when needed; attackers have nothing to find because no key is stored nor present in the power down state.
This enables an enhanced level of anti-tamper and anti-cloning protection when compared to alternative key storage technologies.
Intrinsic-ID invented and patented this HIS – also referred to as Physical Unclonable Function – technology when it was still a part of Royal Philips Electronics. Intrinsic-ID was founded in 2008 as a spin-out of Philips and is headquartered in Eindhoven, The Netherlands.