Design And Implementation Of Flash Controller Based On Secure SOC

Embedded Flash memory is a widely used non-volatile memory.Many MCU and IOT chips have integrated Flash inside.As a type of Memory,Flash has been integrated into most So C chips because of its advantages such as small area,fast reading and writing speed,no loss of information when power is off and strong security.It has been widely used in industrial control,intelligent home appliances,wearable intelligent devices,mobile terminals and other fields at home or abroad.The research of Flash controller and the development of IP core have great market value.Because the interface protocol of embedded Flash is different from the standard AMBA bus interface,in order to integrate it into So C,it is necessary to design a controller to realize the conversion of the two protocols.At the same time,because Flash stored program code or electronic signature and other confidential data are easy to be attacked by the vulnerability of these algorithms themselves,including program tampering,stack attack,jump attack.At present,the traditional Flash controller has complex logic and low reliability without corresponding fault tolerance function,so the design of Flash controller with security protection mechanism has very important engineering application value.This topic is based on the real project.The main work is to design a Flash controller with data security protection function,and realize the programming and erasure algorithm of Flash.In the aspect of reliability,the corresponding fault-tolerant mechanism is designed,and in the aspect of security,the storage protection mechanism is designed.This module supports setting read and write permissions for MASTER number,SLAVER number,CPU mode,data access and instruction access conditions.When unauthorized access occurs,the security protection module will take the protection action,and generate the interrupt request signal,and give the indication signal for inquiry.The address data disturber module is designed to ensure the security of the stored data,so as to solve the problem that the chip is vulnerable to attack and the security is poor.Different from the traditional method of using software to manage system security,this paper proposes the concept of hardware-secure code area,which means a special address range defined to enhance the security of the system.A program that jumps from a normal code area(including branch instructions and interrupts)to an address outside the legal entry point of the safe code area is called an "illegal jump".This behavior can result in an MPU interrupt or the entire on-chip system reset.In this way,the software can only enter and exit from the agreed address,avoiding the illegal jump behavior of the software,so as to improve the security of the system.In the design process of this paper,the top-down design method is adopted.Firstly,the submodules are divided.Then,according to the system structure,the specific functions and implementation methods of each sub-module are analyzed to complete the RTL design.Then the verification process and how to build a verification platform to verify the function of the module are described.Finally,all the function points are passed,thus completing the design of this module.