Google Launches OpenTitan Project to Open Source Chip Security

OpenTitan is an open source collaboration among Google and technology companies to strengthen root-of-trust chip design.

Google is teaming up with tech industry partners to launch OpenTitan, an open source project to strengthen chip security. The initiative will build reference design and integration guidelines for root-of-trust (RoT) silicon chips to be implemented in data center servers, storage devices, peripherals, and other technologies.
The goal is to give chipmakers and platform providers the ability to inspect and contribute to the design, firmware, and documentation of silicon chips. By open-sourcing the chip design, members of OpenTitan hope to make the process more transparent and secure. RoT chips can be used in server motherboards, network cards, laptops, phones, routers, and Internet of Things devices.
Google has already built a secure chip in Titan, its custom RoT chip designed to make sure the machines in its data centers boot from a known trustworthy state with verified code. Titan is used in Googles multifactor security keys and its Google-brand Android phones. OpenTitan brings secure silicon chip design to a broader level with a group of tech industry partners.
What were launching isnt a proposal or standard, OpenTitan founder and Google Cloud director Dominic Rizzo said at a press conference. Its an active engineering project.
Google is responsible for defending a huge volume of data center equipment around the world, Rizzo explained, and its growing attack surface demands new defensive technologies. As firmware-level attacks become a realistic and growing concern, its looking to the silicon layer.
We felt that in order to build trust in our secure silicon, we needed to build the design from the ground up, Rizzo said. The goal is to bring trust, code integrity, trusted machine identity, and physical attack protection into devices built with these RoT silicon chips. OpenTitan can be used with any platform and customized so it adapts to different types of devices and software.
OpenTitan is managed by UK nonprofit lowRISC and supported by ETH Zurich, G+D Mobile Security, Nuvoton Technology, and Western Digital. A team of engineers representing these partners is tasked with building the logical design of the silicon RoT. This includes an open source microprocessor (lowRISC Ibex), cryptographic coprocessors, a hardware random-number generator, sophisticated key hierarchy, memory hierarchies for volatile and nonvolatile storage, defensive mechanisms, I/O peripherals, and secure boot, among other components.
Open source silicon is similar to open source software in the way it folds trust and transparency into the design process. Issues can be detected early on, reducing the need for blind trust. A common, open reference design gives users a choice of implementation, and maintains a set of common interfaces and guarantees for software compatibility, officials explain in a
release
on the news.
The project aims to open source additional layers of the root of trust. In a traditional RoT structure, the open components include protocols, APIs, printed circuit board (PCB) interface, and PCB design, they say. In addition to these, OpenTitan also open sources the firmware, instruction set architecture, system-on-a-chip architecture, digital intellectual property (IP), register-transfer level verification, and chip packaging. The foundry IP, analog IP, physical design kit, and chip fabrication remain proprietary components.
Starting today, OpenTitan is inviting everyone to evaluate and contribute to its design. Hardware vendors are invited to reach out if theyre interested in a pilot OpenTitan RoT integration.
Related Content:
8 Tips for More Secure Mobile Computing
10 Tips for Building Compliance by Design into Cloud Architecture
Microsoft Tools Focus on Insider Risk, Data Protection at Ignite 2019
To Secure Multicloud Environments, First Acknowledge You Have a Problem
This free, all-day online conference offers a look at the latest tools, strategies, and best practices for protecting your organization’s most sensitive data. Click for
more information
and, to register,
here
.

Last News
▸ ArcSight prepares for future at user conference post HP acquisition. ◂ Discovered: 07/01/2025 Category: security	▸ Samsung Epic 4G: First To Use Media Hub ◂ Discovered: 07/01/2025 Category: security	▸ Many third-party software fails security tests ◂ Discovered: 07/01/2025 Category: security

**Cyber Security Categories**
Google Dorks Database	Exploits Vulnerability	Exploit Shellcodes

CVE List

Tools/Apps

News/Aarticles

Phishing Database

Deepfake Detection

Trends/Statistics & Live Infos

Tags:
Google Launches OpenTitan Project to Open Source Chip Security