OpenCL* on Intel® Programmable Acceleration Card with Intel® Arria® 10 GX FPGA Quick Start User Guide

ID 683831
Date 6/05/2020
Public

7. Intel® PAC with Intel® Arria® 10 GX FPGA Security for OpenCL* Applications

The Intel® PAC with Intel® Arria® 10 GX FPGA allows you to enable security features such as Root of Trust (RoT) and AFU signing for the designs to be loaded onto it. The Intel® PAC with Intel® Arria® 10 GX FPGA containing a hardware image (FIM) version 1.2.1 or greater requires an AFU to have the prepended signature blocks, even if an AFU root entry hash has not been programmed. To determine the FIM version installed on your board, follow the instructions from the section Identifying the Flash Image and BMC Firmware. Intel® 's PAC sign allows you to prepend the required blocks with an empty signature chain. Please refer to the Intel FPGA PAC Security Guide to see how to create the keys. After you create the keys, follow the instructions from section Signing OpenCL Images to create signed or unsigned OpenCL* images. If you have any version of FIM prior to 1.2.1, you need to perform a one-time secure update to enable the security features.