With malicious software on the rise, how can you be certain that a computer, server, or mobile device is running the code (and provisioning data) that was intended? You can’t just ask the code itself, so where do you start? The answer is deceptively simple – start where you have certainty and build up a chain of trust. For communication on the web, we rely on Certificate Authorities (CAs) to ensure the security of web content before it reaches the user. In products composed of an interconnected jungle of hardware and software, like Chromebooks and the Cloud infrastructure, we rely on a small dedicated secure microcontroller called a Root of Trust (RoT). And, some devices even have several RoTs for specialized needs.
Over the past six years, Google has been working with the open source community to build OpenTitan, the first open source silicon RoT. In February Google announced that they have started fabrication of the first production-ready OpenTitan silicon by Nuvoton. This silicon will be the first broadly used RoT chip at Google with a fully transparent design and origin. Google has production OpenTitan chips available for lab testing and evaluation with larger volumes available from Nuvoton starting in Spring 2025.
Read more at: https://opensource.googleblog.com/2025/02/fabrication-begins-for-production-opentitan-silicon.html (external)
Picture: Foto von Brian Kostiuk auf Unsplash
Text: https://opensource.googleblog.com/2025/02/fabrication-begins-for-production-opentitan-silicon.html (Download 10.04.2025)