Infineon Introduces Trusted Platform Module (TPM) Chip with Quantum Resistant Firmware Update Cap...

Although much of the discussion regarding the threat of quantum computers to break the RSA encryption algorithm and allow a hacker to decrypt data in transit, there is another potential problem where a quantum computer could cause havoc with something called digital signatures. Almost all the electronic devices we use today are powered by firmware that can be updated by the manufacturer to fix bugs or provide new features. This is becoming a big feature in new automobiles which are now advertising Over-the-Air firmware updates which allow the manufacturer to update the firmware in an automobile without a trip to the dealer for a service call.

The potential problem with firmware updates is that a bad actor could potentially forge a phony firmware update and have it downloaded to a device and insert malicious functionality without anyone realizing it. In order to combat this, a function called digital signatures was invented so that the target device can look at an encoded digital signature for the downloaded code and compare it against one that it has previously stored to ensure the new download is valid. However, current classical digital signature algorithms in common use today have the same vulnerability as the RSA encryption used for key distribution in internet communications and someone with a powerful quantum computer could potentially generate a forged firmware download that looks valid.

The good news is that a new quantum resistant digital signature algorithm called XMSS (eXtended Merkle Signature Scheme) has already been approved by the IETF (Internet Engineering Task Force) and also the TCQ (Trusted Computing Group) standards organizations. XMSS has now been implemented in hardware in Infineon's new Optiga TPM chip. This is the first commercial chip that we are aware of that has this functionality built into the hardware.

A TPM chip is a secure crypto-processor that is designed to carry out cryptographic operations. The chip includes multiple physical security mechanisms to make it tamper-resistant, and malicious software is unable to tamper with the security functions of the TPM. TPMs serves as the root of trust for the rest of the system and these chips are now included as standard in modern personal computers and other systems. They can ensure the security of the rest of the system. Among other things, they can store and generate cryptographic keys and ensure that when your system boots, the firmware and the operating system components can be validated, measured and recorded in the TPM.

The TPM itself is a small processor and it is powered by firmware too. This is where quantum resistant XMSS fits in. Firmware that drives the TPM can also be downloaded and the XMSS digital signature functionality cannot be broken to allow phony firmware installed into the device. For more on Infineon's Optiga quantum resistant TPM chip and its quantum resistant functionality you can view a press release here, a presentation slide deck here, and a video here.

The introduction of the Optiga quantum resistant TPM chip is just one of several quantum related activities that Infineon has been working on. We have reported on many of them in previous articles on this website, but here is a consolidated listing of six other quantum related projects they are participating in with their partners:

1. ATIQ project (Trapped-Ion Quantum Computer for Applications) to develop an ion trap-based quantum computer demonstrator which can be made available to users reliably and around the clock within 30 months.

2. MuniQC-SC (Munich Quantum Computer based on Superconductors) to develop a quantum computer demonstrator based on superconductors.

3. QuMIC project (Qubits Control by Microwave Integrated Circuits) which focuses on the miniaturization of the radio-frequency electronics and control electronics necessary for quantum computers based on ion trap or superconducting qubits.

4. QVOL (Volume production of quantum sensors based on magnetic field sensors in silicon carbide) and will involve development of quantum sensor structures based on silicon carbide technologies which are also suitable for high-volume production.

5. QuaST (Quantum-enabling Services und Tools) is developing software tools to considerably simplify user access to quantum computers.

6. QuBRA project (Quantum methods and Benchmarks for Resource Allocation) to develop algorithms and benchmarking to determine the practically viable benefit of quantum computers in comparison to classic approaches.

For additional information on Infineon's activities with these projects, you can view a press release that they have posted here.

February 20, 2022