Microchip's Trust Shield family provides a comprehensive solution to protect data centers, telecommunications systems, and networks against rapidly evolving security threats.
With the market need for greater security, platforms must evolve rapidly to defend against cyberattacks at boot time, in real time, and when updating the system. Faced with these new threats on the market, designers cannot assume that the equipment they use is trustworthy and must start looking for new technology to protect their systems. Microchip Technology today announced its fully configurable microcontroller-based CEC1736 Trust Shield family that meets this challenge by exceeding NIST 800-193 Platform Firmware Resiliency Guidelines with process-enforced runtime firmware protection. secure boot and establishes a complete chain of trust for the system platform.
The CEC1736 solution expands Microchip's offer to ensure the cyber-resilience of final equipment. It is a fully configurable real-time platform root of trust that enables run-time firmware protection in SPI Flash and I filtering.2C/SMBus against attacks at runtime. The attestation feature provides the proof of trust to ensure that critical platform devices are authentic. Lifetime management and transfer of ownership features protect secrets throughout the life of the final product and during the transfer of product ownership, thus allowing different people to use the system platform securely without compromising the information.
“It is no longer acceptable to assume that equipment is trusted, so it is imperative to anticipate and protect against rogue firmware components, and to be wary of peripheral components until they have been proven to be trustworthy,” said Ian Harris, vice president of Microchip's Computer Products business unit. "Our CEC1736 Trust Shield family offers a complete solution to these challenges, simplifying the development and provision of keys and other secrets, speeding time to market, and providing the flexibility to stay ahead of threats."
The CEC1736 Trust Shield family's advanced hardware encryption suite incorporates AES-256, SHA-512, RSA-4096, ECC with a key size of up to 571 bits and ECDSA (Elliptic Curve Digital Signature Algorithm) with a 384-bit key length.
The 384-bit hardware PUF (Physically Unclonable Function) enables unique root key and symmetric secret, as well as private key generation and protection. Compliant with NIST 800-193 and OCP security guidelines, this advanced root of trust and security solution speeds adoption of the latest security advancements and standards.
Microchip's CEC1736 Trust Shield family consists of silicon devices, software, tools, a development board, and capabilities that deliver the full platform firmware protection customers need.
“Security is an element of business continuity, consumer privacy and national security, so it is everyone's responsibility to ensure its protection,” said Frédéric Thomas, CTO of Kudelski IoT, a leader in security. of IoT. “Microchip has taken significant steps to ensure that the CEC1736 Trust Shield family is robust against advanced attack methods by working with us to independently test their hardware in our advanced security labs. This should give Microchip customers the peace of mind that they are working with a secure next-generation microcontroller that contributes to the overall security of the connected world.”
