Geneva / 23 Nov 2016
STMicroelectronics (NYSE: STM), a global semiconductor leader serving customers across the spectrum of electronics applications and an active member of the Trusted Computing Group (TCG) for more than a decade, has introduced two state-of-the-art security modules that provide an industry-validated shield to protect computers and smart connected devices against cyber-attacks.
The new STSAFE Trusted Platform Modules (TPM) store system-authentication data such as cryptographic keys and software measurements in inaccessible and unalterable hardware, offering an industry-standardized way to protect PCs and servers, as well as other home and office equipment such as printers, copiers, home gateways, network routers, and switches. This protected storage prevents attackers from interfering with the device’s integrity, stealing private data, or taking over the system to gain unauthorized access or privileges that would put the system, data, or its network at risk.
“Robust security is central to maintaining trust in the rapidly growing number of smart connected devices that support the way we live and work,” said Marie-France Florentin, General Manager, Secure Microcontrollers Division, STMicroelectronics. “Our state-of-the-art security modules combine the latest trusted computing technology with value-added features that enable superior protection for end-users’ privacy and safety.”
The Trusted Computing Group’s latest TPM 2.0 specification adds extra features over and above the earlier TPM 1.2[1], including cryptographic algorithms and support for user hierarchies. The first of ST’s new STSAFE-TPM devices, the ST33TPHF2ESPI, supports both specifications and can switch easily between the two, allowing OEMs to provide TPM 1.2 or TPM 2.0 capability on the latest device technology. The second device is the ST33TPHF20SPI, which supports TPM 2.0 and has the largest non-volatile memory in the market to provide up to 110Kbytes storage for sensitive data.
The STSAFE-TPM modules leverage ST’s expertise with the secure ARM® SecurCore® SC300™ processor, which has anti-tamper, data-watching, and memory-protection features. Both devices are Common Criteria (CC) and Trusted Computing Group (TCG) certified against the applicable TPM 1.2 and 2.0 protection profiles and US Federal Information Processing Standard (FIPS) 140-2 certifications are in progress. The new modules come with RSA and ECC[2] Endorsement Keys[3] (EKs) needed to support authentication and associated key certificates are provided, signed by the independent certification authority Globalsign Ltd to guarantee authenticity.
The ST33HTPH2ESPI and ST33HTPH20SPI are available in either a TSSOP28 or QFN32 package. Both devices are in production now. Please contact your ST sales office for pricing options and sample requests.
STSAFE is a family of authentication products offering turn-key solutions. All STSAFE products rely on highly secure MCUs that achieve top-level Common Criteria EAL5+ certification, as certified by independent labs. The STSAFE product family is aimed at offering well-tailored solutions to meet the increasing security challenges in Trusted Computing, Brand Protection, and the IoT.
About STMicroelectronics
ST is a global semiconductor leader delivering intelligent and energy-efficient products and solutions that power the electronics at the heart of everyday life. ST’s products are found everywhere today, and together with our customers, we are enabling smarter driving and smarter factories, cities and homes, along with the next generation of mobile and Internet of Things devices.
By getting more from technology to get more from life, ST stands for life.augmented.
In 2015, the Company’s net revenues were $6.90 billion, serving more than 100,000 customers worldwide. Further information can be found at www.st.com.
[1] TPM1.2 and TPM2.0 are both approved as formal international standards under ISO/IEC (the International Organization for Standardization and the International Electrotechnical Commission).
[2] RSA and ECC: cryptographic algorithms supported by TPM 1.2 (RSA) and 2.0 (RSA and ECC) specifications
[3] Endorsement Key: a cryptographically encoded key pair used to authorize transactions and identify deviations from a known equipment configuration
Membership in the Trusted Computing Group is your key to participating with fellow industry stakeholders in the quest to develop and promote trusted computing technologies.
Standards-based Trusted Computing technologies developed by TCG members now are deployed in enterprise systems, storage systems, networks, embedded systems, and mobile devices and can help secure cloud computing and virtualized systems.
Trusted Computing Group announced that its TPM 2.0 (Trusted Platform Module) Library Specification was approved as a formal international standard under ISO/IEC (the International Organization for Standardization and the International Electrotechnical Commission). TCG has 90+ specifications and guidance documents to help build a trusted computing environment.