AN 933: Updating Intel® Stratix® 10 FPGA Firmware

Download PDF
ID 683605
Date 11/18/2020
Public
Document Table of Contents
Document Table of Contents x
1. AN 933: Updating Intel® Stratix® 10 FPGA Firmware
1. AN 933: Updating Intel® Stratix® 10 FPGA Firmware x
1.1. Updating Intel® Stratix® 10 Firmware in Programming Files 1.2. Firmware Co-Signing 1.3. FPGA Firmware Cancellation IDs 1.4. Document Revision History for AN 933: Updating Intel® Stratix® 10 FPGA Firmware
1.2. Firmware Co-Signing x
1.2.1. Non-RSU Flow 1.2.2. RSU Flow 1.2.3. Verifying Firmware Updates
1.3. FPGA Firmware Cancellation IDs x
1.3.1. Updating Firmware Cancellation ID Fuses
1. AN 933: Updating Intel® Stratix® 10 FPGA Firmware

1.3. FPGA Firmware Cancellation IDs

The Intel® Stratix® 10 FPGA implements an anti-rollback feature to help you control which versions of firmware can be loaded onto the FPGA.

The anti-rollback feature uses key cancellation IDs stored in signature chains as well as corresponding values in eFuses. By programming the eFuse that corresponds to a given key cancellation ID, you invalidate the signature chain that contains the key with that ID. This mechanism prevents the FPGA from loading the signed object, which can be firmware, an FPGA bitstream, an HPS first-stage boot loader, or a certificate that validates a command to the FPGA. Intel® Stratix® 10 FPGA firmware is distinct from the other objects as it is always signed by Intel, and there is an entire set of cancellation fuses for the Intel signature separate from the cancellation fuses that correspond to owner signatures. Therefore, you may utilize Intel® Stratix® 10 FPGA firmware anti-rollback without using any other device security features.

Level Two Title