Partners of the ECLIPSES Project
Partner 1: GEMALTO
Presentation
Gemalto (Euronext NL 0000400653 GTO) is the world leader in digital security with 2008 annual revenues of €1.68 billion, and 10,000 employees operating out of 75 offices, research and service centers in 40 countries.
Gemalto is at the heart of our evolving digital society. The freedom to communicate, travel, shop, bank, entertain, and work—anytime, anywhere—has become an integral part of what people want and expect, in ways that are convenient, enjoyable and secure. Gemalto delivers on the growing demands of billions of people worldwide for mobile connectivity, identity and data protection, credit card safety, health and transportation services, e-government and national security. We do this by supplying to governments, wireless operators, banks and enterprises a wide range of secure personal devices, such as subscriber identification modules (SIM) in mobile phones, smart banking cards, electronic passports, and USB tokens for online identity protection. To complete the solution we also provide software, systems and services to help our customers achieve their goals. As the use of Gemalto's software and secure devices increases with the number of people interacting in the digital and wireless world, the company is poised to thrive over the coming years. For more information please visit www.gemalto.com.
Qualification
Gemalto, acting as an industrial, has an innovation organization and activities in technology evolution for “Trusted Personal Devices” development. Gemalto develops embedded applications based on proprietary secure operating system covering the digital and wireless world. According to its product strategy, Gemalto push in the market innovative solutions relative to the security and contributes to the standardization activity.
The results issued from the project will improve the Gemalto expertise in applications using EC IP . It will improve the security knowledge on EC vulnerabilities.
Partner 2: INVIA
Presentation
Invia is a start-up incorporated in October 2006 dedicated to secure integrated circuits. Invia delivers communication and security hardware Intellectual Properties (IPs) that improve customer products. Knowledge, innovation and teamwork are at the center of the project. Invia creates hardware countermeasures against hacking. Invia’s R&D team develops innovative circuits against side channel attacks, (timing, power, EM analysis), fault attacks, reverse engineering, cloning…
Invia places strong emphasis on developing innovative design techniques that adds value for its customers.
- - Our analog experts create sophisticated supply management, clocking secure scheme, new random generators, and perturbation sensors (voltage, temperature, light, mechanical stress…).
- - Our digital architects improve processors, public & secret keys cryptographic coprocessors, protections against rerouting, robustness of systems, data and code encryptions…
In a bit more than two years, the business idea became real and a core team is at work serving our first customers’ needs. First securization IPs have been delivered, and one successful chip is at the pre-industrialization stage. With an R&D team of 10 designers, Invia offers to the project its hardware IC expertise necessary to develop the best silicon for a given budget. The engineers are cumulating more than 80 years of secure IC design, with relevant experience in cryptographic coprocessors and chip releases. With more than 75 patent applications, they have demonstrated their innovative capabilities in hardware architecture.
Invia will contribute to the project by offering:- - Secure high performance Risc 32 bits processor (based on Sparc V8), a customizable IP for microcode investigations.
- - Very efficient Public key coprocessor architecture. The non concurrency performances: 8kG, less than 100ms for RSA 1024 sign noCRT @ 30MHz, including security (all square/multiply, side channel) makes this Ips a strong base to reach best of the NC class elliptic curves coprocessor.
- - Supply Voltage regulator IP with all security features
- - Secure Clock manager IP
- - True random generator IP
- - Perturbation Sensor IPs
According to the technology choice, this existing IPs will contribute to make the demonstrator a complete secure product offering all protections required to be tested in a security evaluation, without charging the budget of the program.
The secure SPARC processor associated to the modular coprocessor engine will be the foundation of the hardware architecture for WP3.
Qualification
Invia develops innovating hardware IPs for secure products. Eclipse is a key research program to improve a RSA modular crypto co-processor IP to pairing over elliptic curves. The collaboration with famous academic research centers and cryptographic experts is a big opportunity to increase Invia’s knowhow, and to complete its offer with application layers. The contribution of Gemalto driving the project is the guaranty to create a solution adapted to the market needs. This will facilitate the exploitation of the results with silicon suppliers.
Invia will own the rights on Invia hardware development. Software library will be owned by their contributors, through WP1 & WP2.
Architecture choices could be patented by WP2, WP3, WP4 contributors if it’s relevant, but patents are not always the best protection in the security domain.
Invia proposes to package and distribute a complete solution IPs with software layers.
The creativity of each partner will be embedded in the final IP that will be issued as the outcome of this R&D project and revenues will be shared. The business model of Invia based on the technology independent IPs guaranties to the project the best diffusion capabilities without any market protection barriers.
Gemalto’s providers will be first targeted, but all French SME that have secure application will benefit of this founded program (C.f. “baby smart SME”).
The resulting IPs will contribute to Invia’s business plan targeting 25 new engineer jobs in 4 years.
Alain POMET: 10 years with STMicroelectronics as smartcard IC Engineer, specialized in crypto-processor, then head of the hardware security lab. More than 40 patents application deposits on the domain. Program manager of a MEDEA funded project “Full speed”. Co-founder of the start-up INVIA dedicated to Ips for secure products. Acting as the Chief Technical Officer.
Partner 3: Université de Versailles Saint-Quentin-en-Yvelines
Presentation
The research teams of the PRiSM laboratory (Parallèlisme, Réseaux, Systèmes et Modélisation) are involved in two main scientific themes of UVSQ: Mathematics and Computer science on one hand, “Design, Modelization and Implementation of Systems” on the other hand. These two directions are not separated from each other, as shown by many collaborations with other labs, and the participation of many PRiSM teams to both directions.
Within the “Mathematics and Computer Science” theme, the PRiSM teams study cryptology and security, models for algorithms and operational research. All the teams also participate to the “Design, Modelization and Implementation of Systems” theme, with a particular focus on communication systems (networks and telecommunication), embedded systems, mobile systems, high speed networks, and database systems.
The "Cryptology and Information Security" team of the PRiSM laboratory was born in 2001, with Jacques Patarin, grew in 2004 when Louis Goubin and Antoine Joux joined it. Michaël Quisquater joined the trio in 2006.
In its research activities, the cryptography team aims at widely covering the various themes of academic research in cryptology, public key and secret key cryptography, cryptanalysis, security of implementations, number theory, multivariate cryptography, hash functions, etc.
The cryptology team brings its specificity in the computer science courses at UVSQ and, since several years, the university offers several teaching programs with a part devoted to cryptology and information security. In particular, the research graduate program “Applied Algebra” offers a full cryptology course. It has just been complemented by a professional graduate program, called SeCReTS (Security of Contents, Networks, Telecommunications and Systems).
In order to contribute to the national and international renown of the "Cryptology and Information Security" team, its members give a significant time to research management. In particular, there are currently eleven PhD students within the team: four are working in the PRiSM laboratory at UVSQ, and seven are working in computer science companies. Moreover, the members of the team published many papers about elliptic curves and physical attacks.
Qualification
The "Cryptology and Information Security" team at UVSQ brings its expertise in the domain of elliptic curves. It is worth noticing that the use of elliptic curve pairings in cryptography was introduced by Antoine Joux, who also studied - together with Sorina Ionica - the use of Edwards curves coordinates to speed-up pairing computations. New fundamental ideas on side-channel attacks and countermeasures were introduced by Louis Goubin. The ECLIPSES project will give the opportunity to further study efficient implementations of pairings in software and hardware, and a detailed analysis of side-channel attacks in the context of new applications - especially those using pairings.
Partner 4: CryptoExperts
Presentation
CryptoExperts is a young start-up company founded by widely recognized industrial and academic researchers in IT security and cryptography. The company offers externalized R&D and consulting services in a wide variety of security areas, including advanced security evaluation of cryptographic software, products and services. The cryptographic expertise of the company includes: proof-based analysis of cryptographic systems and protocols, on-demand design of new cryptographic systems (access control, e-passports, secure storage, electronic commerce and e-cash systems, electronic voting, e-government applications, broadcast encryption and traitor tracing, digital signatures and encryption with specific properties), practical applications of cryptography, security architectures, design and implementation of cryptographic libraries for embedded systems on specific hardware (cryptoprocessors, smart cards, USB tokens, HSM, etc), and security evaluation of cryptographic implementations (side-channel and fault analysis).
Qualification
CryptoExperts has a research group of well-recognized experts in applied cryptography. Research areas include provable security; the design and security evaluation of cryptographic functions, schemes and protocols; secure implementations and the physical security of embedded systems. Therefore the group’s technical expertise simultaneously covers theoretical and very practical aspects of cryptographic systems. We refer to a list of recent publications related to the project: security proofs and formal models for cryptographic systems : [CE-01], [CE-02], [CE-03]; physical security and embedded systems: [CE-04], [CE-05].
CryptoExperts offers to the project a world-class expertise in applied cryptography and will provide support in all its stages. Conversely, ECLIPSES is beneficial to CryptoExperts through the sharing of a specific know-how in secure hardware design arising from partners having a strong expertise in hardware design and related methodologies.
Partner 5: CEA-LETI
Presentation
CEA-LETI is a laboratory specialized in nano and micro electronics research of the ``Commissariat à l'Energie Atomique''. Its goal is to develop innovations and to transfer them to industry. About 1000 researchers are working in various areas such as micro and nano electronics technologies, telecommunication, biomedical engineering, etc. CESTI LETI is an official evaluation laboratory of the French Certification Scheme which has been created in 1999. It is specialized in evaluating security devices (hardware and embedded software) and is recognized for its competences in the smartcard area. CESTI LETI is fully licensed to perform Common Criteria evaluations that could offer, in case of success, a worldwide recognition. CESTI LETI has evaluated 80% of the new generation of the French banking cards and has evaluated the new VITALE II card. CESTI LETI is also involved in various groups for standardizing the evaluation practices at the European level (ISCI, JHAS groups). This channel will be used to have an efficient dissemination of the results. A common team with EMSE (``Ecole des mines de Saint-Etienne'') has also been setup in Gardanne, in the PACA region. The department ``System and Secured Architectures'' (SAS) contributes to the development of communicating solutions through the design and the test of secured design. The mission of this team is to understand and find attacks, to anticipate the countermeasures and to imagine new products and applications resistant to the attacks. Department SAS develops its main research activities around 2 axes:
- − Secure design circuits,
- − Embedded cryptography.
This team is dedicated to develop innovative hardware solutions for security devices. Through various projects, a platform dedicated to security characterization was built and will be accessible in Gardanne (F).
Qualification
The CEA LETI will provide its expertise in the following domains:
- - Design methodology for securing components against physical attacks
- - Hardware prototyping
- - Security evaluation
The interest for the CEA LETI in the project is to:
- - maintain a high level of skills and know-how for development of future applications
- - increase the knowledge about the elliptic curves, related to design architecture and physical attacks.