[Cryptech-Commits] [doc/design] 01/01: clarify, show security boundry
git at cryptech.is
git at cryptech.is
Sun Jan 11 09:12:43 UTC 2015
This is an automated email from the git hooks/post-receive script.
jakob at kirei.se pushed a commit to branch master
in repository doc/design.
commit 6c4c0db443615d78a9e20effd50da03ca3d40586
Author: Jakob Schlyter <jakob at kirei.se>
Date: Sun Jan 11 10:12:26 2015 +0100
clarify, show security boundry
---
hsm-board.graffle | 300 +++++++++++++++++++-----------------------------------
1 file changed, 102 insertions(+), 198 deletions(-)
diff --git a/hsm-board.graffle b/hsm-board.graffle
index 259c67e..b9ef3b5 100644
--- a/hsm-board.graffle
+++ b/hsm-board.graffle
@@ -69,7 +69,7 @@
<integer>0</integer>
<key>Points</key>
<array>
- <string>{227.80311720140909, 125.62992217287302}</string>
+ <string>{239.67323010821974, 125.62992217287302}</string>
<string>{364.25196055375568, 227.18942619211924}</string>
</array>
<key>Style</key>
@@ -101,7 +101,7 @@
</dict>
<dict>
<key>Bounds</key>
- <string>{{182.30311720140909, 110.62992217287302}, {91, 30}}</string>
+ <string>{{194.17323010821974, 110.62992217287302}, {91, 30}}</string>
<key>Class</key>
<string>ShapedGraphic</string>
<key>FitText</key>
@@ -173,7 +173,7 @@ testing and debugging}</string>
<integer>0</integer>
<key>Points</key>
<array>
- <string>{197.31491720140912, 168.25243757464659}</string>
+ <string>{221.82677315811472, 175.19685190808107}</string>
<string>{300.0865824241771, 227.18942619211924}</string>
</array>
<key>Style</key>
@@ -205,7 +205,7 @@ testing and debugging}</string>
</dict>
<dict>
<key>Bounds</key>
- <string>{{141.31491720140912, 153.25243757464659}, {112, 30}}</string>
+ <string>{{165.82677315811472, 160.19685190808107}, {112, 30}}</string>
<key>Class</key>
<string>ShapedGraphic</string>
<key>FitText</key>
@@ -277,7 +277,7 @@ connected to the FPGA}</string>
<integer>0</integer>
<key>Points</key>
<array>
- <string>{333.38189234855605, 125.62992217287302}</string>
+ <string>{340.68897892649704, 125.62992217287302}</string>
<string>{429.06298469487933, 227.18942619211924}</string>
</array>
<key>Style</key>
@@ -309,7 +309,7 @@ connected to the FPGA}</string>
</dict>
<dict>
<key>Bounds</key>
- <string>{{284.88189234855605, 100.62992217287302}, {97, 50}}</string>
+ <string>{{294.18897892649704, 100.62992217287302}, {93, 50}}</string>
<key>Class</key>
<string>ShapedGraphic</string>
<key>FitText</key>
@@ -355,9 +355,9 @@ connected to the FPGA}</string>
\pard\pardeftab720\qc
\f0\i\fs16 \cf0 USB Client interface\
-used for communicating\
-with applications and\
-HSM management}</string>
+for HSM management\
+and for communicating\
+with applications}</string>
</dict>
<key>Wrap</key>
<string>NO</string>
@@ -383,8 +383,8 @@ HSM management}</string>
<integer>0</integer>
<key>Points</key>
<array>
- <string>{119.94094535769443, 227.18942619211924}</string>
- <string>{227.80311720140909, 227.18942619211924}</string>
+ <string>{108.9409453576944, 227.18942619211924}</string>
+ <string>{235.92120429459851, 227.18942619211924}</string>
</array>
<key>Style</key>
<dict>
@@ -413,7 +413,7 @@ HSM management}</string>
</dict>
<dict>
<key>Bounds</key>
- <string>{{74.440945357694432, 212.18942619211924}, {91, 30}}</string>
+ <string>{{47.94094535769441, 212.18942619211924}, {122, 30}}</string>
<key>Class</key>
<string>ShapedGraphic</string>
<key>FitText</key>
@@ -458,8 +458,8 @@ HSM management}</string>
\deftab720
\pard\pardeftab720\qc
-\f0\i\fs16 \cf0 SPI flash contains the\
-FPGA bitstream (code)}</string>
+\f0\i\fs16 \cf0 Configuration memory contains\
+the FPGA bitstream (code)}</string>
</dict>
<key>Wrap</key>
<string>NO</string>
@@ -485,8 +485,8 @@ FPGA bitstream (code)}</string>
<integer>0</integer>
<key>Points</key>
<array>
- <string>{128.44094535769443, 285.29964307344687}</string>
- <string>{227.80311720140909, 285.29964307344687}</string>
+ <string>{108.9409453576944, 285.29964307344687}</string>
+ <string>{235.92120429459851, 285.29964307344687}</string>
</array>
<key>Style</key>
<dict>
@@ -515,7 +515,7 @@ FPGA bitstream (code)}</string>
</dict>
<dict>
<key>Bounds</key>
- <string>{{91.440945357694417, 265.29964307344687}, {74, 40}}</string>
+ <string>{{55.940945357694403, 270.29964307344687}, {106, 30}}</string>
<key>Class</key>
<string>ShapedGraphic</string>
<key>FitText</key>
@@ -560,9 +560,8 @@ FPGA bitstream (code)}</string>
\deftab720
\pard\pardeftab720\qc
-\f0\i\fs16 \cf0 Keystore contains\
-encrypted\
-application keys}</string>
+\f0\i\fs16 \cf0 Keystore contains \
+encrypted application keys}</string>
</dict>
<key>Wrap</key>
<string>NO</string>
@@ -589,7 +588,7 @@ application keys}</string>
<key>Points</key>
<array>
<string>{108.9409453576944, 343.40985995477433}</string>
- <string>{227.80311720140909, 343.40985995477433}</string>
+ <string>{235.92120429459848, 343.4098599547745}</string>
</array>
<key>Style</key>
<dict>
@@ -684,8 +683,6 @@ used to encrypt the Keystore}</string>
<dict>
<key>ID</key>
<integer>170</integer>
- <key>Info</key>
- <integer>8</integer>
</dict>
<key>ID</key>
<integer>236</integer>
@@ -693,8 +690,8 @@ used to encrypt the Keystore}</string>
<integer>0</integer>
<key>Points</key>
<array>
- <string>{575.04721590275449, 406.92913726267847}</string>
- <string>{575.04721590275449, 299.4728713373018}</string>
+ <string>{700.68504626281606, 170.19685190808107}</string>
+ <string>{587.80311590275448, 271.12641480959189}</string>
</array>
<key>Style</key>
<dict>
@@ -723,7 +720,7 @@ used to encrypt the Keystore}</string>
</dict>
<dict>
<key>Bounds</key>
- <string>{{516.04721590275449, 386.92913726267847}, {118, 40}}</string>
+ <string>{{641.68504626281606, 150.19685190808107}, {118, 40}}</string>
<key>Class</key>
<string>ShapedGraphic</string>
<key>FitText</key>
@@ -788,108 +785,6 @@ Key Memory upon tamper}</string>
<key>Head</key>
<dict>
<key>ID</key>
- <integer>218</integer>
- </dict>
- <key>ID</key>
- <integer>234</integer>
- <key>Layer</key>
- <integer>0</integer>
- <key>Points</key>
- <array>
- <string>{701.13780124243783, 125.62992217287302}</string>
- <string>{698.35431531582935, 319.31539141357285}</string>
- </array>
- <key>Style</key>
- <dict>
- <key>shadow</key>
- <dict>
- <key>Draws</key>
- <string>NO</string>
- </dict>
- <key>stroke</key>
- <dict>
- <key>HeadArrow</key>
- <string>FilledArrow</string>
- <key>Legacy</key>
- <false/>
- <key>Pattern</key>
- <integer>24</integer>
- <key>TailArrow</key>
- <string>0</string>
- </dict>
- </dict>
- <key>Tail</key>
- <dict>
- <key>ID</key>
- <integer>233</integer>
- </dict>
- </dict>
- <dict>
- <key>Bounds</key>
- <string>{{657.63780124243783, 110.62992217287302}, {87, 30}}</string>
- <key>Class</key>
- <string>ShapedGraphic</string>
- <key>FitText</key>
- <string>YES</string>
- <key>Flow</key>
- <string>Resize</string>
- <key>FontInfo</key>
- <dict>
- <key>Font</key>
- <string>HelveticaNeue-Italic</string>
- <key>Size</key>
- <real>8</real>
- </dict>
- <key>ID</key>
- <integer>233</integer>
- <key>Layer</key>
- <integer>0</integer>
- <key>Style</key>
- <dict>
- <key>fill</key>
- <dict>
- <key>Draws</key>
- <string>NO</string>
- </dict>
- <key>shadow</key>
- <dict>
- <key>Draws</key>
- <string>NO</string>
- </dict>
- <key>stroke</key>
- <dict>
- <key>Draws</key>
- <string>NO</string>
- </dict>
- </dict>
- <key>Text</key>
- <dict>
- <key>Text</key>
- <string>{\rtf1\ansi\ansicpg1252\cocoartf1343\cocoasubrtf160
-{\fonttbl\f0\fnil\fcharset0 HelveticaNeue;}
-{\colortbl;\red255\green255\blue255;}
-\deftab720
-\pard\pardeftab720\qc
-
-\f0\i\fs16 \cf0 Tamper input/outputs\
-may be added later}</string>
- </dict>
- <key>Wrap</key>
- <string>NO</string>
- </dict>
- <dict>
- <key>Class</key>
- <string>LineGraphic</string>
- <key>FontInfo</key>
- <dict>
- <key>Font</key>
- <string>Helvetica</string>
- <key>Size</key>
- <real>12</real>
- </dict>
- <key>Head</key>
- <dict>
- <key>ID</key>
<integer>216</integer>
</dict>
<key>ID</key>
@@ -898,7 +793,7 @@ may be added later}</string>
<integer>0</integer>
<key>Points</key>
<array>
- <string>{575.04721590275449, 125.62992217287302}</string>
+ <string>{575.33071350948069, 170.19685190808107}</string>
<string>{575.04721590275449, 213.01619792826423}</string>
</array>
<key>Style</key>
@@ -928,7 +823,7 @@ may be added later}</string>
</dict>
<dict>
<key>Bounds</key>
- <string>{{534.04721590275449, 105.62992217287302}, {82, 40}}</string>
+ <string>{{534.33071350948069, 150.19685190808107}, {82, 40}}</string>
<key>Class</key>
<string>ShapedGraphic</string>
<key>FitText</key>
@@ -1001,7 +896,7 @@ during development}</string>
<integer>0</integer>
<key>Points</key>
<array>
- <string>{429.06298469487933, 65.354331120168126}</string>
+ <string>{429.06298469487933, 76.692914112721837}</string>
<string>{429.06298469487933, 151.55950422912957}</string>
</array>
<key>Style</key>
@@ -1050,7 +945,7 @@ during development}</string>
<integer>0</integer>
<key>Points</key>
<array>
- <string>{560.04721590275449, 65.354331120168126}</string>
+ <string>{560.04721590275449, 76.692914112721837}</string>
<string>{485.75587619115618, 227.18942619211924}</string>
</array>
<key>Style</key>
@@ -1080,7 +975,7 @@ during development}</string>
</dict>
<dict>
<key>Bounds</key>
- <string>{{486.04721590275454, 45.354331120168119}, {148, 40}}</string>
+ <string>{{486.04721590275454, 56.69291411272183}, {148, 40}}</string>
<key>Class</key>
<string>ShapedGraphic</string>
<key>FitText</key>
@@ -1134,7 +1029,7 @@ storage devices for master key backup}</string>
</dict>
<dict>
<key>Bounds</key>
- <string>{{386.06298469487933, 45.354331120168119}, {86, 40}}</string>
+ <string>{{386.06298469487933, 56.69291411272183}, {86, 40}}</string>
<key>Class</key>
<string>ShapedGraphic</string>
<key>FitText</key>
@@ -1607,7 +1502,7 @@ Driver}</string>
<integer>1</integer>
<key>Points</key>
<array>
- <string>{227.80311720140909, 227.18942619211924}</string>
+ <string>{235.92120429459851, 227.18942619211924}</string>
<string>{300.0865824241771, 285.29964307344687}</string>
</array>
<key>Style</key>
@@ -1637,7 +1532,7 @@ Driver}</string>
</dict>
<dict>
<key>Bounds</key>
- <string>{{202.2913172014091, 213.01619792826426}, {51.023600000000002, 28.346456527709961}}</string>
+ <string>{{210.40940429459852, 213.01619792826426}, {51.023600000000002, 28.346456527709961}}</string>
<key>Class</key>
<string>ShapedGraphic</string>
<key>FontInfo</key>
@@ -1679,8 +1574,8 @@ Driver}</string>
{\colortbl;\red255\green255\blue255;}
\pard\tx560\tx1120\tx1680\tx2240\tx2800\tx3360\tx3920\tx4480\tx5040\tx5600\tx6160\tx6720\qc
-\f0\fs16 \cf0 SPI\
-Flash}</string>
+\f0\fs16 \cf0 Config\
+Memory}</string>
<key>VerticalPad</key>
<integer>0</integer>
</dict>
@@ -2006,54 +1901,6 @@ Host}</string>
</dict>
</dict>
<dict>
- <key>Bounds</key>
- <string>{{352.74771675308119, 369.02452126407036}, {61, 20}}</string>
- <key>Class</key>
- <string>ShapedGraphic</string>
- <key>FitText</key>
- <string>YES</string>
- <key>Flow</key>
- <string>Resize</string>
- <key>ID</key>
- <integer>186</integer>
- <key>Layer</key>
- <integer>1</integer>
- <key>Line</key>
- <dict>
- <key>ID</key>
- <integer>183</integer>
- <key>Position</key>
- <real>0.59381484985351562</real>
- <key>RotationType</key>
- <integer>0</integer>
- </dict>
- <key>Style</key>
- <dict>
- <key>shadow</key>
- <dict>
- <key>Draws</key>
- <string>NO</string>
- </dict>
- <key>stroke</key>
- <dict>
- <key>Draws</key>
- <string>NO</string>
- </dict>
- </dict>
- <key>Text</key>
- <dict>
- <key>Text</key>
- <string>{\rtf1\ansi\ansicpg1252\cocoartf1343\cocoasubrtf160
-{\fonttbl\f0\fnil\fcharset0 HelveticaNeue;}
-{\colortbl;\red255\green255\blue255;}
-\pard\tx560\tx1120\tx1680\tx2240\tx2800\tx3360\tx3920\tx4480\tx5040\tx5600\tx6160\tx6720\pardirnatural\qc
-
-\f0\i\fs16 \cf0 Erasure circuit}</string>
- </dict>
- <key>Wrap</key>
- <string>NO</string>
- </dict>
- <dict>
<key>Class</key>
<string>LineGraphic</string>
<key>FontInfo</key>
@@ -2193,9 +2040,9 @@ Host}</string>
<real>-1</real>
<key>Points</key>
<array>
- <string>{562.29131590275449, 299.47287133730185}</string>
- <string>{465.02833294939012, 379.02452126407036}</string>
- <string>{227.80311720140909, 343.40985995477433}</string>
+ <string>{575.04721590275449, 299.4728713373018}</string>
+ <string>{465.58669001751315, 374.91593695271456}</string>
+ <string>{235.92120429459848, 343.4098599547745}</string>
</array>
<key>Style</key>
<dict>
@@ -2221,7 +2068,7 @@ Host}</string>
<key>ID</key>
<integer>170</integer>
<key>Info</key>
- <integer>9</integer>
+ <integer>8</integer>
</dict>
</dict>
<dict>
@@ -2564,7 +2411,7 @@ Host}</string>
<integer>1</integer>
<key>Points</key>
<array>
- <string>{227.80311720140909, 285.29964307344687}</string>
+ <string>{235.92120429459851, 285.29964307344687}</string>
<string>{300.0865824241771, 285.29964307344687}</string>
</array>
<key>Style</key>
@@ -2594,7 +2441,7 @@ Host}</string>
</dict>
<dict>
<key>Bounds</key>
- <string>{{202.2913172014091, 271.12641480959189}, {51.023600000000002, 28.346456527709961}}</string>
+ <string>{{210.40940429459852, 271.12641480959189}, {51.023600000000002, 28.346456527709961}}</string>
<key>Class</key>
<string>ShapedGraphic</string>
<key>FontInfo</key>
@@ -2636,8 +2483,7 @@ Host}</string>
{\colortbl;\red255\green255\blue255;}
\pard\tx560\tx1120\tx1680\tx2240\tx2800\tx3360\tx3920\tx4480\tx5040\tx5600\tx6160\tx6720\qc
-\f0\fs16 \cf0 Keystore\
-(flash)}</string>
+\f0\fs16 \cf0 Keystore}</string>
<key>VerticalPad</key>
<integer>0</integer>
</dict>
@@ -2948,7 +2794,7 @@ Client}</string>
<integer>1</integer>
<key>Points</key>
<array>
- <string>{227.80311720140909, 343.40985995477433}</string>
+ <string>{235.92120429459848, 343.4098599547745}</string>
<string>{300.0865824241771, 285.29964307344687}</string>
</array>
<key>Style</key>
@@ -2978,7 +2824,7 @@ Client}</string>
</dict>
<dict>
<key>Bounds</key>
- <string>{{202.2913172014091, 329.23663169091935}, {51.023600000000002, 28.346456527709961}}</string>
+ <string>{{210.40940429459849, 329.23663169091952}, {51.023600000000002, 28.346456527709961}}</string>
<key>Class</key>
<string>ShapedGraphic</string>
<key>FontInfo</key>
@@ -3276,7 +3122,7 @@ Client}</string>
</dict>
<dict>
<key>Bounds</key>
- <string>{{645.91336995813504, 229.31539059698923}, {104.88189071538875, 180.00000163316724}}</string>
+ <string>{{649.85431531582947, 229.60630129585113}, {97, 171.78697524699766}}</string>
<key>Class</key>
<string>ShapedGraphic</string>
<key>FontInfo</key>
@@ -3331,6 +3177,64 @@ inputs/outputs}</string>
<key>TextPlacement</key>
<integer>2</integer>
</dict>
+ <dict>
+ <key>Bounds</key>
+ <string>{{194.17323010821974, 198.42519865073541}, {565.51181615459632, 212.59842712578825}}</string>
+ <key>Class</key>
+ <string>ShapedGraphic</string>
+ <key>FontInfo</key>
+ <dict>
+ <key>Font</key>
+ <string>HelveticaNeue-Italic</string>
+ <key>Size</key>
+ <real>8</real>
+ </dict>
+ <key>ID</key>
+ <integer>255</integer>
+ <key>Layer</key>
+ <integer>1</integer>
+ <key>Style</key>
+ <dict>
+ <key>fill</key>
+ <dict>
+ <key>Color</key>
+ <dict>
+ <key>a</key>
+ <string>0.1</string>
+ <key>b</key>
+ <string>0.4</string>
+ <key>g</key>
+ <string>0.4</string>
+ <key>r</key>
+ <string>1</string>
+ </dict>
+ </dict>
+ <key>shadow</key>
+ <dict>
+ <key>Draws</key>
+ <string>NO</string>
+ </dict>
+ <key>stroke</key>
+ <dict>
+ <key>Draws</key>
+ <string>NO</string>
+ </dict>
+ </dict>
+ <key>Text</key>
+ <dict>
+ <key>Align</key>
+ <integer>0</integer>
+ <key>Text</key>
+ <string>{\rtf1\ansi\ansicpg1252\cocoartf1343\cocoasubrtf160
+{\fonttbl\f0\fnil\fcharset0 HelveticaNeue;}
+{\colortbl;\red255\green255\blue255;}
+\pard\tx560\tx1120\tx1680\tx2240\tx2800\tx3360\tx3920\tx4480\tx5040\tx5600\tx6160\tx6720\pardirnatural
+
+\f0\b\fs16 \cf0 Security Boundary}</string>
+ </dict>
+ <key>TextPlacement</key>
+ <integer>2</integer>
+ </dict>
</array>
<key>GridInfo</key>
<dict>
@@ -3398,7 +3302,7 @@ inputs/outputs}</string>
<key>MasterSheets</key>
<array/>
<key>ModificationDate</key>
- <string>2015-01-10 22:13:17 +0000</string>
+ <string>2015-01-11 09:11:15 +0000</string>
<key>Modifier</key>
<string>Jakob Schlyter</string>
<key>NotesVisible</key>
More information about the Commits
mailing list