AMI PlatFire™ is a new jointly-developed platform firmware security solution from two of the leading names in PFR - AMI and Lattice Semiconductor - to bring the industry an integrated, fully-featured, pre-verified and secure Platform Root-of-Trust (PRoT) solution that is flexible, scalable, low cost, and easy to implement. The solution uses the Lattice Sentry stack, featuring a low-power Lattice MachXO3D™ secure control FPGA running pre-verified, PFR-compliant IP, to implement a PRoT on a server's motherboard. The AMI PlatFire firmware then orchestrates the connection between the PRoT and other on-board components, such as SoCs and RoCs, to confirm the firmware they are running is valid.
This solution enables developers to quickly and easily implement system-level cyber resiliency that is pre-validated as compliant with NIST Platform Firmware Resiliency (PFR) Guidelines (NIST SP 800-193), making it easy for developers with limited hardware security expertise or limited time-to-market to implement PFR on the latest industry-standard server platforms.
AMI has applied its 35 years of deep expertise in BIOS and BMC firmware development to deliver a robust PFR solution designed to detect, protect and recover firmware from unauthorized modification. As implemented in the AMI-Lattice joint solution, the PlatFire firmware executing on the Lattice MachXO3D with the Lattice Sentry solution stack orchestrates the connection between the solution's PRoT and all other ICs on the motherboard. Moreover, AMI PlatFire firmware is host CPU-agnostic, to give system developers greater flexibility in supporting the CPU requirements of their chosen server platform.
Thanks to its seamless integration with Aptio® UEFI Firmware and MegaRAC® SPX BMC Firmware from AMI, AMI PlatFire delivers a truly turnkey PFR solution - making use of the Lattice MachXO3D IP blocks to support detection and recovery of platform firmware, together with runtime monitoring of SPI flash memory used to store the platform firmware.
The Lattice Sentry solutions stack delivers a robust combination of customizable embedded software, reference designs based on the Lattice MachXO3D secure control FPGA, IP, and development tools to accelerate the implementation of secure systems compliant with PFR guidelines. As the system controller, the MachXO3D is the first component to execute code and attest power sequencing logic at system startup,
making it an ideal platform for establishing a PRoT. Thanks to the MachXO3D FPGA's parallel processing architecture and flash memory, the device monitors for and detects attacks in real time - a truly groundbreaking innovation as real time monitoring is currently beyond the processing capabilities of competing PRoT solutions like MCUs.
For more information about Lattice Sentry, please visit https://www.latticesemi.com/latticesentry.
MachXO3D™ is a trademark of Lattice Semiconductor Corporation.
Links for product support, documentation and related resources
There are currently no data sheets available.
There are currently no whitepapers available.
There are currently no other documents available.