Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted
Beginner
130 Views

MAX10 Design Security

Dear forum members,

I have three questions regarding MAX10

Question 1: Allow encrypted POF only

If I enable encrypted POF, I am able to re-programm the FPGA at a later stage with a non-encrypted POF. This does not make sense to me, can you please comment on this issue.

Question 2: Enable JTAG Security

It is my understanding that enabling JTAG security means that I cannot reprogram the FPGA. The exception would be if I were to use JTAG Secure Unlock via internal JTAG WYSIWYG. However, I have not installed this feature. My question is: Is internal JTAG WYSIWIG is disabled by default or do I need to disable it?

Question 3: Verification of JTAG Secure 

Is there an easy way to test if JTAG secure is applied? 

Many thanks for clarifying,

Christian 

0 Kudos
4 Replies
Highlighted
Employee
118 Views

Hi,


Please find my response below:

Question 1: Allow encrypted POF only


If I enable encrypted POF, I am able to re-programm the FPGA at a later

stage with a non-encrypted POF. This does not make sense to me, can you

please comment on this issue.


Nope, this is wrong. You cannot program non-encrypted POF once JTAG Secure is enabled.


Question 2: Enable JTAG Security


It is my understanding that enabling JTAG security means that I cannot

reprogram the FPGA. The exception would be if I were to use JTAG Secure

Unlock via internal JTAG WYSIWYG. However, I have not installed this

feature. My question is: Is internal JTAG WYSIWIG is disabled by default

or do I need to disable it?


Nope, this is not enabled by default. You may refer to user guide below for the method to enable it:

https://www.intel.com/content/dam/www/programmable/us/en/pdfs/literature/an/an556.pdf (Page 36)


Question 3: Verification of JTAG Secure 


Is there an easy way to test if JTAG secure is applied? 


If you have the external header to connect with JTAG. The easiest way is to try to access using that. It will not be able to access if JTAG secure is enabled.


Thank You.


Bruce


0 Kudos
Highlighted
Beginner
113 Views

Dear Bruce,

 

Thank you very much for getting back to me. Everything clear, except one misunderstanding:

For questions 1: I can select "Allow encrypted POF only" and NOT "Enable JTAG security". (see attachment) I was able to later program with a non-encrypted file. Therefore, I do not see any effect of chosing "Allow encrypted POF only". Can you please elaborate on this.

 

Cheers,

Christian

0 Kudos
Highlighted
Beginner
106 Views

Dear Bruce,

 

Did you receive my later response / question?

 

Cheers,

Christian

0 Kudos
Highlighted
Employee
97 Views

Hi,


If you have enabled this option, that means to say the encrypted POF can only be configured into internal flash. However, programming the CRAM is still posssible. Thus i am assuming you are programming the CRAM instead of the internal flash with unencrypted POF.


Thank You.


0 Kudos