Talk:Secure cryptoprocessor
This article is rated C-class on Wikipedia's content assessment scale. It is of interest to the following WikiProjects: | |||||||||||||||||||||||||||||||||||||||||||||||||||||
|
External links are all advertising
editAnyone has alternative suggestions? Delete them outright? KnowS (talk) 16:28, 5 March 2013 (UTC)
Merge this article
editThis page should be merged with Hardware Security Modules, as this is just an example of embedded HSM application, rather than different technology. References should be cleaned up, most of them are just direct links to commercial websites. 12.43.237.215 (talk) 21:39, 22 September 2008 (UTC)
Don't merge - Secure cryptoprocessor is a distinct subcategory of HSM, just as automobile is a distinct subcategory of vehicle, and horse is a distinct subcategory of mammal, and Hardware Security Module is a distinct subcategory of computer. You wouldn't think of merging those would you? Just because a processor does crypto in a locked box does not make it a secure cryptoprocessor. "Secure" is in the narrow sense that it cannot reveal its secrets to anybody, not even to its owner, which implies a single chip. The owner of a computer module in a locked box such as an ATM, who has the combination to the ATM, can access the keys and plaintext on the bus, unless the ATM module or motherboard has a secure cryptoprocessor in it. The secure cryptoprocessor is then a component in the HSM along with other components such as a graphics chip and ROM. Components such as graphics chips and ROMs are distinct from computers and Hardware Security Modules and therefore have separate Wiki articles. 4.235.81.173 (talk) 01:14, 23 September 2008 (UTC)
- I disagree. Name few clear distinctions between HSMs and cryptoprocessors as presented in this article. From HSM "A Hardware Security Module (often abbreviated to HSM) is a physical device in form of a plug-in card or an external security device that can be attached to general purpose computer and servers." Hardware Security Module *is* a cryptoprocessor, they both perform *only* cryptographic calculations, they both have various levels of tamper resistance. You need to ether expand (with references) on these differences or consider merging articles.KnowS (talk) 16:15, 23 September 2008 (UTC)
- Don't merge, but some text in the article should be moved to the HSM article, as it is about specific historic HSM products that were not themselves cryptoprocessors. This includes the Attala box and the IBM products mentioned, as those are all complete boxes that were externally sealed, yet contained other chips than cryptoprocessor chips. Jbohmdk (talk) 12:54, 21 July 2020 (UTC)
Reference cleanup
editReferences need to be cleaned up. Following:
* IBMs homepage for its cryptoprocessors * Extracting a 3DES key from an IBM 4758 * SafeNet security processors
are not linked to any specific text or fact in the article and are not in the proper format. KnowS (talk) 16:23, 23 September 2008 (UTC)
Cryptoprocessor vs. secure cryptoprocessor
editThe article attempts to distinguish between secure cryptoprocessors and cryptoprocessors (albeit cryptoprocessors redirects to secure cryptoprocessors). In particular, it is claimed that "cryptographic processors [may] output decrypted data onto a bus in a secure environment, [whereas] a secure cryptoprocessor [may never] output decrypted data [...] in an [insecure] environment." This is clearly not a distinction, since secure cryptoprocessors may output decrypted data onto a bus in a secure environment, just like a cryptoprocessor.
- A cryptographic processor is a chip or chip part that does cryptographic calculations natively, such as the part of an Intel x86 CPU that executes the AESNI instructions. It is not necessarily independently secure. A (secure) cryptoprocessor is a complete CPU specially built to do cryptography and protect the secrets it handles from off-chip access. It's like the difference between a lock and an armoured bank vault, the vault has a lock, but a vault also prevents thieves from getting to the money in many other ways than picking the lock.Jbohmdk (talk) 13:02, 21 July 2020 (UTC)
Perhaps include a list of cryptoprocessor makers
editA number of companies make actual cryptoprocessor chips for their various use cases. For example, NXP (Formerly Phillips) makes some CryptoProcessors that they sell to companies making SmartCards, car keys etc. Gemalto/Thales may or may not be making their own Cryptoprocessor chips used in their smartcards and HSM products. Generic CPUs with cryptographic abilities typically are not cryptoprocessors, although some modern CPU chips include embedded CryptoProcessors as supporting hardware (such as the separate core running the trusted chip management code in Intel and AMD CPUs or the separate core acting as an Embedded eSim smartcard in some modern Smartphone CPU chips).Jbohmdk (talk) 13:13, 21 July 2020 (UTC)
Use URL http:// only safe web
editURL https:// not safe web.ikazan : BE SAFE LOVE FOR ALL HATE FOR NONE . 2605:8D80:6A2:79E5:50B5:B460:6219:71B4 (talk) 11:52, 12 December 2023 (UTC)