At Rambus, we create cutting-edge semiconductor and IP products, spanning memory and interfaces to security, smart sensors and lighting.

Products
- - - Explore our full catalog of products so you can find the right solution to fit your needs.
    - Product Selector
Solutions
- - By Market
  - AI & Machine Learning
  - Automotive
  - Data Center
  - Edge
  - Government
  - IoT
- - - Explore our full catalog of products so you can find the right solution to fit your needs.
    - Product Selector
Resources
- - Resource Library
  - Our library of informational videos, papers, presentations, and more
  - Webinars
  - Check out our library of upcoming and on-demand webinars
- - Inventions
  - Explore innovations that enable the superior performance of Rambus solutions
  - Certifications
  - Certified silicon IP solutions tailored to the specific needs of some of the world’s most demanding applications
- - - Explore our full catalog of products so you can find the right solution to fit your needs.
    - Product Selector
Company
- - About
  - Corporate Overview
  - Leadership
  - Inventors
  - Careers
  - Locations
  - Investor Relations
- - News & Media
  - Newsroom
  - Blog
  - Events
- - - Explore our full catalog of products so you can find the right solution to fit your needs.
    - Product Selector
- English

CryptoManager RT-7xx Embedded HSM Family

Quantum Safe, ISO 21434 Automotive-grade Programmable Hardware Security

Home > Security IP > Root of Trust Solutions > CryptoManager RT-7xx Embedded HSM Family

The automotive-grade CryptoManager RT-7xx v3 Root of Trust family from Rambus is the next generation of fully programmable ISO 26262 and ISO 21434 compliant hardware security modules offering Quantum Safe security by design for secure automotive applications.

Device and system architects face a growing array of security threats, including the threat of quantum computers. Across applications, one constant is the need for an automotive-grade Root of Trust-based security implementation.

The CryptoManager RT-7xx family protects against a wide range of hardware and software attacks through state-of-the-art side channel attack countermeasures and anti-tamper and security techniques. The RT-7xx supports various security certifications up to level 3. The RT-7×4 Root of Trust adds Quantum Safe Encryption (QSE) to provide a future-proof hardware security solution to protect data center assets starting today and into the quantum era

The CryptoManager RT-7xx allows customers users to develop secure and trusted applications that run securely within a trusted boundary. Secure applications can be assigned unique roots and keys, allowing independent permissions and access levels.

Contact

Product Brief

Security Certifications

ETAS-Rambus iHSM-64x Family Product Brief

To support OEMs and SoC developers with managing design, safety, security and cost challenges, ETAS and Rambus have collaborated to develop an innovative solution that combines synthesizable HSM hardware IP with pre-integrated, pre-validated HSM software. The full iHSM-64x stack (hardware silicon IP and software) is a pre-validated, drop-in solution critical to creating a security enclave on next-generation automotive silicon designs requiring ISO 26262 ASIL-B, ISO 21434 CSMS compliance and, optionally, Quantum Safe Cryptography.

How the CryptoManager RT-7xx Embedded HSM Works

The CryptoManager RT-7xx Root of Trust is a siloed hardware security IP core for integration into semiconductors, offering secure execution of authenticated user applications, tamper detection and protection, secure storage and handling of keys and security assets, and optional resistance to side-channel attacks. The Root of Trust is easily integrated with industry-standard interfaces and system architectures and includes standard hardware cryptographic cores. Access to crypto modules, keys, memory ranges, I/O, and other resources is enforced in hardware. Critical operations, including key derivation and storage, are performed in hardware with no access by software. The Root of Trust is based on a custom 32-bit processor designed specifically to provide a trusted foundation for secure processing on chip and in the system. The RT-7xx inherits its flexible cryptographic accelerator from the automotive-grade embedded Rambus CryptoManager Hub CH-7xx cores.

The Root of Trust supports all common host processor architectures including ARM, RISC-V, x86 and others. The multi-threaded secure processor runs customer developed signed code either as a monolithic supervisor or as loadable security applications which include permissions and security-related metadata. It can implement standard security functionality provided by Rambus, or complete customer-specific security applications, including key and data provisioning, security protocols, biometric applications, secure boot, secure firmware update, and many more.

Protecting Data and Devices Now and in the Quantum Computing Era

Quantum computing is being pursued across industry, government and academia with tremendous energy and is set to become a reality in the not-so-distant future. Once sufficiently large quantum computers exist, traditional asymmetric cryptographic methods for key exchange and digital signatures will be broken. Many initiatives have been launched throughout the world to develop and deploy new quantum-resistant cryptographic algorithms, known as Post-Quantum Cryptography (PQC).

Solution Offerings

Features

Deliverables

Features

Custom-designed, customer programmable 32-bit secure RISC-V processor
AXI Interface to SoC, and fast 64-bit addressable DMA to host memory
Multi-layered security model protecting all core components against a wide range of attacks. The security model includes hierarchical privilege model, secure key management policy, hardware-enforced isolation/access control/protection, error management policy
Secure data store allowing assets generated during boot available for secure applications
Wide range of classic and Quantum Safe cryptographic accelerators and security modules, such as canary logic for protection against glitching and overclocking, secure key derivation
State-of-the-art anti-tamper mechanisms against DPA and FIA side channel attacks
Functional safety mechanisms meeting ASIL-B and ASIL-D SPFM-t/p and LFM metrics

Configurations and Cryptographic Accelerators by Product

Product	Cryptographic Accelerators Supported
RT-730B	NIST CMVP compliant. NIST CAVP hardware cryptographic accelerators including AES (all modes), HMAC, SHA-2/3 (all modes), RSA up to 4096 or 8192 bits, ECC up to 521 bits, a NIST SP 800-90A/B certified TRNG. LMS and XMSS hash-based signature schemes and SHAKE XOF boot flow. Developed under ISO 26262 ASIL-D systemic development and ISO 21434 cybersecurity CAL4 processes. Implements ISO 26262 ASIL-B functional safety detection mechanisms
RT-760D	As per RT-730B + DPA-resistant and FIA-protected cryptographic accelerators. Implements ISO 26262 ASIL-D functional safety detection mechanisms
RT-731B/RT-761D	As per RT-730B/RT-760D + Chinese Encryption with OSCCA SM2/3/4
RT-734B/RT-764D	As per RT-730B/RT-760D + CNSA Quantum Safe Cryptography (ML-KEM, ML-DSA, SLH-DSA) and boot flow

Deliverables