Configuration / Programming / Security | Bitstream Encryption / Decryption

Bitstream Encryption / Decryption
7424 - [All Nexus] Lattice Radiant Programmer: Is there a default readout for the encryption key of Nexus Devices?
Description: When reading out the encryption key in Nexus device, there is a default value. Is this expected? Solution: Nexus devices have the following default encryption key values: For Crosslink-NX, Certus NX, and Mach NX: ...
6079 - MachXO3D: Why does the device could boot whether public key is programed or erased given that ECDSA authentication function is used?
MachXO3D's configuration image authentication during programming or boot does have flexible authentication support as stated below: 1. Authenticate during programming = secure + fast boot 2. Pre-authenticaion = secure + slower boot time 3. No ...
3036 - Lattice EPC2/S: Why is the encrypted bitstream not working for Lattice ECP2/S device?
For the encrypted bitstream to work in LatticeECP2/S device, ensure the following: For power-up, VCC must reach its valid minimum value before powering up VCCAUX (LatticeECP2/M “S” version devices only). Refer to LatticeECP2/M Family Data Sheet for ...
6400 - CertusPro-NX: What is the correct information or data for uncompressed bitstream?
In relation to the bitstream, it is encrypted bitstream format. Since all of the data are encrypted. Please find snippet below: // Header Frame FFFF BEB3 If you notice, there is BEB3 in the content instead of BDB3. It is a bitstream preamble that ...
1644 - LatticeECP3: Is there a recommended way of choosing AES (Advanced Encryption Standard) encryption key?
We implemented the AES (Advanced Encryption Standard) block based on its standard. Any analysis of the strengths and weaknesses of AES is performed by the standard's committee. Studies for the strength of AES encryption key have been documented by ...
7004 - MachXO3D: How does enabling AES feature decryption bits "RAND_AES" and "RAND_NOISE" impact on MachXO3D device configuration processing time?
RAND_AES and RAND_NOISE are clock randomization and random noise injection features, mainly use for Differential power analysis (DPA) resistance in Advanced Encryption Standard (AES) decryption. Both features are target for AES decryption, to prevent ...
5646 - ECP5/ECP5-5G/CrossLink: If the user wants to update the bitstream in the field and encrypt the bitstream so that it can only be used on my product, is there a solution available in the CrossLink device?  If yes, in what document is it stated?
Encrypting the bitstream is only available with Lattice XP2, and ECP products. Crosslink, does not support a bitstream encryption solution on the other hand.

Popular Articles
What to Expect from Lattice Support?
Lattice Technical Support Expectation Please be advised that highest priority for Lattice Technical Support will be given to 1. Software which is not working as expected or suspected bugs. We recommend that customers use the latest software tools and ...
7743 - How to implement Gigabit Ethernet in Certus-NX, CertusPro-NX, MachXO5-NX and CrossLink-NX FPGAs?
Lattice currently recommends the following for implementing Gigabit Ethernet interfaces: CertusPro-NX FPGAs: Use SERDES-based SGMII or RGMII Certus-NX, MachXO5-NX, and CrossLink-NX: Use RGMII These recommendations are based on updated LVDS-based ...
6485 - Lattice Radiant: What is Glitchfilter in Device constraint editor?
Glitch Fliter is used to prevent short-duration events of glitches, This is used to prevent False tripping on noise in a system. GLITCHFilter in device constraints , enables 1ns glitch filtering.
7336 - Lattice Radiant v2023.2: How to modify I2C slave address or 96-feabits using Pseudo mode?
Description: Nexus device family has a default I2C slave address of 0x40 and you are allow to modify it based on your requirement. Solution: To permanently modify the I2C address, you can modify the desired value in .fea file and use the Programmer ...
6900 - PCIe for Nexus FPGAs: How can the PCIe configuration space settings in the RTL of the demo be interpreted?
Description: To understand the RTL formatting of the PCIe configuration space in the Nexus' PCIe demos, please refer to the following details. Figure 1 illustrates the initialization of the PCIe configuration space in the Nexus' demo.

Configuration / Programming / Security | Bitstream Encryption / Decryption | Knowledge Base

Bitstream Encryption / Decryption

7424 - [All Nexus] Lattice Radiant Programmer: Is there a default readout for the encryption key of Nexus Devices?

6079 - MachXO3D: Why does the device could boot whether public key is programed or erased given that ECDSA authentication function is used?

3036 - Lattice EPC2/S: Why is the encrypted bitstream not working for Lattice ECP2/S device?

6400 - CertusPro-NX: What is the correct information or data for uncompressed bitstream?

1644 - LatticeECP3: Is there a recommended way of choosing AES (Advanced Encryption Standard) encryption key?

7004 - MachXO3D: How does enabling AES feature decryption bits "RAND_AES" and "RAND_NOISE" impact on MachXO3D device configuration processing time?

5646 - ECP5/ECP5-5G/CrossLink: If the user wants to update the bitstream in the field and encrypt the bitstream so that it can only be used on my product, is there a solution available in the CrossLink device?&nbsp; If yes, in what document is it stated?

Popular Articles

What to Expect from Lattice Support?

7743 - How to implement Gigabit Ethernet in Certus-NX, CertusPro-NX, MachXO5-NX and CrossLink-NX FPGAs?

6485 - Lattice Radiant: What is Glitchfilter in Device constraint editor?

7336 - Lattice Radiant v2023.2: How to modify I2C slave address or 96-feabits using Pseudo mode?

6900 - PCIe for Nexus FPGAs: How can the PCIe configuration space settings in the RTL of the demo be interpreted?

5646 - ECP5/ECP5-5G/CrossLink: If the user wants to update the bitstream in the field and encrypt the bitstream so that it can only be used on my product, is there a solution available in the CrossLink device? If yes, in what document is it stated?