:>You are right, and it is a problem. :>
:>I have been thinking about it too. :>
:>Overall I feel there isn't much security in the FPGA chips themselves, but I :>thought it might be an idea to have a smart card chip (as used in the SIMs :>for mobile phones). Your FPGA system configures as per normal. :>
:>It then has encrypted conversation with the SIM (which is a far more secure :>device), and if it confirms the SIM is valid it works as normal, else it :>shuts down as you wish. :>
:>This transfers the problem of cracking from the FPGA to the SIM. :>
:>The FPGA config can still be ripped off of course, but without the SIM it :>will be useless. :>
:>SIMs are pretty small and the carriers are easily available. :>
:>The SIM only needs a 3.58 (or 5) MHz clock, and 5V or 3V. :>(I run my design off 14.3181 MHz, so this is easy to obtain). :>The SIM reader electronics is easy to implement. :>
:>You still have to write the verification protocol. :>Sounds easy but it is not trivial making sure it has no security holes (I've :>worked with these chips). :>But easier to make the SIM secure (that's what they were designed for) than :>the FPGA/config ROM system. :>
:>If you do manage to implement this, then it opens up a lot of possibilities. :>
:>The SIM is detachable so you can get your stuff built in say the far east :>and post the SIMs to the end user by trusted carrier. They can easily :>install the SIM. :>You might also make the SIM specific to individual signed config ROMs. :>Or send upgrade config ROMs with SIMs. : :Thanks for your reply. The problem I see with this aproach - provided :I understood you correctly - is that since the code in the fpga would :be "open" it could be reverse engineered much easier and the sim part :could be shorted as a result also. I might sound paranoid - I'm not, I :just like to know what I'm dealing with. : :The aproach with the Lattice PLD containing flash the other poster :mentioned seems to be the best to me so far cause this means that a :cracker would have to physically open the PLD and get down to this :level where as "listening" on the bus is IMHO a lot easier. I might be :wrong here, but at least to me the Lattice PLD aproach would be much :harder to crack. : :Well, I'm looking foreward to eventually hear other ideas. : :Markus