Founded in 2011, KeyPair was the first company in Korea to obtain firmware-based KCMVP certification in 2018. Since then, it has been supplying KCMVP security chips to the Korean Electric Power and defense sectors.
KSE Series operates with KCMVP certified crypto module (CLIB V1.0) as firmware on top of CC certified security chip. The encryption key is securely stored in the Secure Memory inside the Secure Chip. The cryptographic algorithm operation is performed safely inside the secure chip, and the cryptographic key is not exposed outside the secure chip. Various applications such as Crypto API and TLS/DTLS are mounted in the application area. It communicates with the host CPU through the I/O interface.
* KCMVP - Korea Cryptographic Module Validation Program
* CC - Common Criteria
| Distinguish | Cryptographic Algorithms | Remarks |
|---|---|---|
| Random Number Generator |
CTR_DRBG |
Block cipher: ARIA-128 |
| Block cipher |
ARIA |
KeyLength : 128,192,256 bit Operating Modes : ECB, CBC, CTR, GCM |
| Hash functions |
SHA |
SHA-256 |
| Message Authentication |
HMAC |
Hash functions : SHA-256 |
| Electronic signatures |
ECDSA |
Curve : P-256 |
| Keying |
ECDH |
Curve : P-256 |
* AES, DES, T-DES Support
CPU : 16bit RISC
Memory : RAM – 6KB, Flash – 200KB
Interface : ISO-7816
Package : SOP-8, 5mm(W) x 6mm(D) x 1.6mm(H)
Operating Voltage : 1.62V ~ 5.5V
Certification : KCMVP (Verification Number: CM-144-2023.10), CC (Common Criteria)
CPU : 32bit RISC
Memory : RAM – 48KB, Flash – 2000KB
Interface : SPI
Package : QFN-16, 4mm(W) x 4mm(D) x 0.8mm(H)
Operating Voltage : 1.62V ~ 5.5V
Certification : KCMVP (Verification Number: CM-144-2023.10), CC (Common Criteria)
CPU : 32bit RISC
OS : Windows10, Linux
Interface : USB (Full Speed)
Package : 61mm(W) x 22mm(D) x 9mm(H)
Operating Voltage : 5.0V (USB Power)
Certification : KCMVP (Verification Number: CM-144-2023.10), CC (Common Criteria)
Securely store encryption keys and sensitive data in secure memory inside a CC-certified security chip (smartcard IC chip).
KeyPair's KSE products are secure against physical attacks, and they are equipped with defenses against side-channel attacks, one of the most powerful attack techniques.
Even if the device is exposed to an attacker, the encryption keys stored within the KSE product are safe.
National Intelligence Service KCMVP Physical Security Grade 2 (the highest grade in Korea)
The KSE300B uses a QFN-16 package measuring 4 mm (W) x 4 mm (D) x 0.8 mm (H) and weighs 0.3 grams.
Smaller and lighter chips are used to miniaturize and lighten equipment.
The software version of the KCMVP cryptomodule operates in a rather heavy operating system environment such as Linux, Windows, and so on, which increases the size of the hardware module with the cryptomodule and increases the power consumption.
The KCMVP-certified cryptographic module operates as firmware on top of the security chip, and user applications can be implemented on the application layer.
It is possible to implement applications that reflect various user needs, and the protocols required for TLS/DTLS, certificate management, Secure Boot, and smart meters are currently implemented.
KSE security chips have been applied to KEPCO's AMI (Advanced Metering Infrastructure) modems and meters.
KSE security chips have been applied to civilian and military drones. The KSE security chip encrypts and decrypts data.
The KSE security chip is applied to military radios, injecting keys through a cryptographic key injector and providing data encrypted communication.
The KSE security chip is applied to the IOT platform and supports various IOT communication protocols such as TLS, DTLS, LWM2M, and MQTT.