Type-C Certification IC Solution
Release time:2019-06-25author:adminfrequency:179次
Type-C Certified IC Solution protects equipment while also helping "crack down on counterfeiting"
Last year, after a vulnerability code named "BadUSB" was exposed, the security of USB suffered the biggest challenge. According to Wired magazine, BadUSB will reverse reprogram the firmware of USB interface controller chips for malicious purposes, and because it cannot access the firmware area of USB devices, neither antivirus nor formatting can solve this problem. This makes USB the most dangerous data interface in the world.
Of course, in addition to "BadUSB", we have seen news such as "Charging Treasure to steal personal information" before. It has to be said that with the increasing frequency of interconnection between devices, USB security issues are becoming increasingly serious.
However, as one of the interface versions based on USB standard, USB Type-C, which has gradually become the standard, inevitably has these security problems. Karsten Nohl, an independent security researcher, said that although there are many advantages, the multifunctionality of the USB Type-C interface, which is highly praised, will make it face more security risks. At the same time, even if it is a new interface, it can not solve the problem of BadUSB attack. For example, because the new MacBook has only one interface, users may be infected with malicious programs if they just want to charge the MacBook through devices in public rather than transmitting data.
Some people say that the only way to solve the problem of USB security may be to abandon the USB standard or not use any other people's USB devices. Apart from this Virgo solution, is there any other way to save today's "fragile" USB devices?
Joe Salvador, marketing director of NXP Global Security Verification Product Line, said at a recent media conference that we can build trust mechanisms for Type-C peripherals and cables through tamper-proof, highly secure authentication IC solutions to achieve reliable and secure connections. This security authentication scheme can identify "BadUSB" with malicious intentions and block out malicious programs that attempt to steal information.
Joe Salvador adds that system and device manufacturers and end users enable or disable functionality based on trust levels established between host and device, or set different modes of operation according to different trust levels. For example, the Type-C interface supporting USB PDs can achieve up to 100W power transmission, so the system can verify chargers or cables before switching on the high-power fast charging function to prevent possible security problems caused by counterfeit products. When you choose the limited fast charging mode, according to the pre-set may only provide a basic 5V 1A charging mode.
In fact, a system or device manufacturer can design such a way that when the connected device is not an authenticated and authorized device, the system will pop up a prompt, requiring the user to choose whether to trust or not. The advantage is that at least one warning is given, and the final decision is still in the hands of the end user.
NXP's complete USB security solution mainly includes these aspects: first, tamper-proof security hardware, security encryption library that is not stolen by third parties, mature development tools that have been applied in the market, in addition to safety production facilities and complete USB solution.
