( ESNUG 313 Item 2 ) ---------------------------------------------- [3/10/99]

From: [ "Sam, I Am" ]
Subject: Synopsys Issues Vague Warning About VCS 4.2.2/5.0.1 Encryption Bug

John,

Please keep me anonymous.  Hey, have you seen this?

  verilog_simulation-232.html


  VCS Encryption Bug

  VCS 4.2.2 and VCS 5.0.1 contain a number of bug fixes, including a fix for 
  a source encryption bug which could compromise the security of an 
  encrypted model under certain unusual circumstances. This situation could 
  only arise in the 4.2, 4.2.1 or 5.0 versions of the product. Corresponding
  versions of VCSi could also exhibit the same problem.

  The updated releases of VCS namely VCS 4.2.2 and 5.0.1 will be available 
  for ftp download by February 26, 1999. The corresponding VCSi versions 
  will be available by March 5, 1999.

  Synopsys highly recommends that all VCS users upgrade to the newer 
  versions when they are available, especially if users distribute encrypted 
  models. The new versions introduce a new encryption algorithm available 
  under a command line switch "+newprotect". Model distributors will need to 
  re-encrypt their existing models using the new versions of VCS while
  specifying the +newprotect switch to take advantage of the improved 
  security and re-ship them to their end users. End user's of these new 
  models will also need to upgrade to the new version of the VCS software. 
  The new encryption algorithm will be made default by the next VCS release, 
  namely VCS 5.1.

  Source encryption is one of the options VCS provides to distribute models 
  to end users. Source encryption is inherently less secure than VMC & IPX 
  technology which VCS also provides.  Since last year Synopsys has been 
  supplying IPx technology free of charge to VCS customer under maintanance. 
  More information on IPx is available at:

  http://www.synopsys.com/news/announce/press/ipx_pr.html

  If you would like ftp download instructions for the new releases or if you 
  have any questions, please send an email to "VCS_support@synopsys.com".


Does this mean that all my source code encrypted with VCS 4.2.2 and 5.0.1 is
now readable by others???!!

    - [ "Sam, I Am" ]
 Sign up for the DeepChip newsletter.
Email
 Read what EDA tool users really think.


Feedback About Wiretaps ESNUGs SIGN UP! Downloads Trip Reports Advertise
"Relax. This is a discussion. Anything said here is just one engineer's opinion. Email in your dissenting letter and it'll be published, too."
This Web Site Is Modified Every 2-3 Days
Copyright 1991-2024 John Cooley.  All Rights Reserved.
| Contact John Cooley | Webmaster | Legal | Feedback Form | 

   !!!     "It's not a BUG,
  /o o\  /  it's a FEATURE!"
 (  >  )
  \ - / 
  _] [_     (jcooley 1991)