Home
15 Programming and Debugging
Information about Programming and Debugging
15.2 Secure Production Programming Solution (SPPS)
Information about Secure Production Programming Solution (SPPS)
15.2.8 HSM Servers

v2024.2

1 What's New
Information about what is new in Libero SoC Design Suite
2 Download Help
Information to help you download the Libero SoC Design Suite documentation
3 SmartHLS Compiler
Information about SmartHLS Compiler
4 Installation and Licensing
Information about Libero SoC software installation and licensing
5 Design Flow
Information about Design Flow
6 Block Flow
Information about Block Flow
7 SmartDesign
Information about SmartDesign
8 Netlist Viewer
Information about Netlist Viewer
9 I/O Editor
Information about I/O Editor
10 PDC Commands
Information about PDC commands for all families
11 Chip Planner
Information about Chip Planner
12 Timing Constraints Editor
Information about Timing Constraints Editor
13 SmartTime Static Timing Analyzer
Information about SmartTime Static Timing Analyzer
14 SmartPower
Information about SmartPower
15 Programming and Debugging
Information about Programming and Debugging
- 15.1 FlashPro Express
  Information about FlashPro Express
- 15.2 Secure Production Programming Solution (SPPS)
  Information about Secure Production Programming Solution (SPPS)
- 15.3 SmartDebug
  Information about SmartDebug
- 15.4 Job Manager
  Information about Job Manager
16 Macro Library
Information about Macro Library for SmartFusion2, IGLOO2 and PolarFire
17 Custom Flow
Information about Custom Flow
18 Design Separation Methodology
Information about Design Separation Methodology
19 Microchip Separation Verification Tool
Information about Microchip Separation Verification Tool
20 PolarFire SoC Microcontroller Subsystem (MSS)
Information about PolarFire SoC Microcontroller Subsystem (MSS)
21 Tcl Command Reference
Information about Tcl Command Reference
22 Additional Information
Additional information about other Microchip products
23 Technical Support
24 About Microchip
More information about Microchip

15.2.8 HSM Servers

(Ask a Question)

This section provides information about User and Manufacturer HSM servers: purpose, deployment scenarios, and the key management scheme.

HSM servers provide a protected security environment that allows SPPS to:

Generate and protect user encryption and pass keys, base keys, random nonces, and so on.
- Application keys and their associated metadata are stored as encrypted key tokens on the HSM-server mass storage device (for example, hard drive)
Execute cryptographic algorithms and protocols making use of the protected keys:
- Generate protocol data (For example, Authorization Code bitstream components (see Authorization Code Protocol), and so on.)
- Verify validators generated by other HSMs or devices (For example, CoC (see Device Certificate of Conformance (CoC), Job End certifier (see Job End Certifier Protocol), and so on)
- Securely transmit information between HSM servers (see HSM Security Environment)

Secured key handling and protocol execution is done by the SEE firmware running inside the HSM hardware module (see Use of Hardware Security Modules (HSM)).