"Basado en una FPGA, este módulo de seguridad y encriptación dispone de un verdadero generador de números aleatorios, permitiendo descargar al software de la tarea que realiza este elemento de hardware."
"Designed for processors that support serial interfaces, the one-chip module offers all the functionalities of a dedicated HSM within a single compact MAX10 FPGA chip."
"In order to make Kryptor FPGA more accessible to IoT developers and makers, the company says it’s providing a free Raspberry-Pi-compatible API for Linux."
"Kyrptor...is a compact Intel/Altera MAX10 FPGA development board mostly designed for encryption, and acting as a dedicated Hardware Security Module (HSM) with a custom soft-core from Skudo OÜ."
Designed with encryption in mind and built around a single, compact Intel/Altera MAX10 FPGA chip, Kryptor is a professional FPGA development board capable of offering all the functionality of a dedicated Hardware Security Module (HSM) when running our custom soft-core. Combined with that verifiable HSM soft-core, Kryptor brings an easy-to-use, plug-and-play encryption solution to the IoT-developer and maker communities.
Kryptor replaces all software-based encryption functionality with HW-based implementations and reduces its attack surface—to defend against viruses, malware-injection attacks, and exploitable bugs—by avoiding the use of an operating system (OS).
Both its RAM and its flash memory circuitry is self contained within the FPGA. This architecture is safer than relying on external chips, each of which, in turn would need to be physically secured.
One of the main strengths and competitive advantages of this board is the fact that the entire implementation can be verified using well-known, proven open source encryption primitives. And, as open hardware, Kryptor provides even greater transparency and verifiability.
No encryption solution should rely on blind trust in a particular chip manufacturer for its security. Trust must be earned, which is why we’re making our files available to independent third-parties for review and analysis. It is quite rare for a commercial entity to grant access to the detailed schematics of, for example, a commercial encryption ASIC chip, but we are committed to providing a level of transparency that allows our customers to rule out the possibility that Kryptor might contain back doors or other hidden elements. To that end, we are giving independent third parties access to our technology and to our technical documents.
Finally, we greatly value our identity as a European company, and we carry out as much of our design and manufacturing as possible—including all of our assembly and testing—within Europe.
When running our HSM soft-core, Kryptor provides the following functions, all of which are implemented in Verilog inside the FPGA:
Please note: for security reasons, the private key of any asymmetric key pair cannot be extracted.
To make Kryptor more accessible to IoT developers and makers, we provide a free, easy-to-use, Raspberry-Pi-compatible API for Linux, which allows almost anyone to get started in mere minutes. We also provide an Arduino library. See our demos and technical documentation for more details.
In the screenshots below, you can see how simple it is to interact with our HSM using a Raspberry Pi connected via SPI:
Please note: due to the import/export legislation regulating all the products that include data-encryption capabilities, we are shipping Kryptor without the encryption soft-core pre-installed.
Everyone who backs the SKUDO Kryptor crowdfunding campaign will have the option to download the HSM soft-core free of charge from skudo.tech, along with instructions that walk you through the simple process of flashing that soft-core onto your board (without the need for a JTAG adapter).
Of course, backers are free to use Kryptor in any way they like. Use it as a MAX10 FPGA development board or load your own soft-core. And you can still load our HSM soft-core, at a later date, using our JTAG adapter board.
|Kryptor||iCEBreaker FPGA||TinyFPGA BX||NiteFury (Product page)|
|FPGA model||Intel 10M08||Lattice iCE40UP5k||iCE40LP8K||Artix XC7A200T|
|Form factor||Header or SMD||Header||Header||M.2|
|Made in Europe||YES||NO||NO||NO|
|Chip clock||100 MHz||12 MHz||16 MHz||90 MHz|
|Size||23 x 35 mm||50 x 40 mm||36 x 18 mm||22 x 80 mm|
You can also reach out using the Ask a technical question link below.
One of our strong values is for our technology to be "Made in Europe", and so our plan is to design, develop, assemble, and test SKUDO Kryptor entirely within Europe. All our prototype work was carried out between Estonia, Belgium, Hungary, and Italy. For the production of the final product, we intend to stick with our current suppliers, with whom we have developed a solid, proven relationship. We will have two options:
In either case, the end products will then arrive at our office in Estonia, where they will be programmed with a basic FPGA soft-core that allows backers to load our HSM soft-core without the need for a JTAG adapter.
Once the SKUDO Kryptor PCBs have been fabricated, assembled, tested, and packaged, they will be sent in bulk to Crowd Supply’s fulfillment partner, Mouser Electronics, along with the rest of the products we are making available through this campaign. (For more information, please see Crowd Supply’s Ordering, paying, and shipping guide.) From there, Mouser will ship everything to backers, who will then have the option to redeem their free vouchers to receive an HSM programming file from our website, which they can upload to their SKUDO Kryptor boards using, for example, a standard Raspberry Pi.
We have done a lot of work to design this product, and we have tested and verified quite a few iterations. As a result, there is little risk that we will have to make any modifications down the line due to sourcing challenges.
The electronics used in Kryptor are very common, so setbacks due to manufacturing errors are also quite unlikely. As always, product delivery slow-downs caused by shipping delays remain a possibility.
Rest assured that we will update you regularly on our progress.
Funding ends on Sep 28, 2021 at 04:59 PM PDT (11:59 PM UTC)