《李静、周东升 (意法半导体)-STSAFE, TPM助力IOT安全、保护品牌.pdf》由会员分享,可在线阅读,更多相关《李静、周东升 (意法半导体)-STSAFE, TPM助力IOT安全、保护品牌.pdf(36页珍藏版)》请在三个皮匠报告上搜索。
1、STSAFE 助力物联网安全和品牌保护李静Jane Li/周东升Dorson Zhou意法半导体 Connected SecuritySTSAFE Family Tamper-Proof certified solutionNon-invasive attacks(material&IP theft)Secure manufacturing and development environmentsSemi-invasive attacks(Fault injection Invasive)Dedicated architecture and designHardware and Softwar
2、e countermeasuresInvasive physical attacksMetal shieldsIntrusion detectorsObfuscationTurn-key solution with Secure Manufacturing and ProvisioningSecure Element Connected objectSTSAFE brings enhanced security3HardwareGP MCU/MPU head unitSensorsConnectivity“SE:Secure Companion”SoftwarePlatform BootCus
3、tomer ApplicationYour Security Our Concern4Offer address two major needsBrand protectionSecurity for connected devicesControl the number of usagesVerify that a consumable or a peripheralis genuineEnsure embedded system integrity01000Verify that the device is genuineVerify the device acces
4、s rights to clouds01000Ensure integrity&confidentiality of exchanged dataCustomers want to:Customers want to:STSAFE Security featuresSeamless I2C&1wire integrationAuthentication service with personalized certificateConnected device secure connection and secure pre-attachmentSecure data st
5、orage with 6k user memorySignature generation/verification(secure boot,FW up)Usage monitoringBased on CC EAL5+platformTemperature range:-40 to 105STSAFE-A Optimized5STSAFE-TPMStandardized and increased security featuresI2C interface up to 1 MHzSPI interface up to 66MHzExtended non-volatile memory to
6、 204 KBRich crypto services:RSA,ECC,3DES,HDKF,HMAC,AES,SHAUpgradable firmware mechanism for up-to-date servicesCC EAL6+,TCG 2.0,FIPS140-2 certifiedConsumer,industrial,automotive market useOptimized feature supportedSTSAFE Potential ApplicationsConsumables and accessories authenticationSingle-use dis
7、posals as printer cartridgesHealthcare consumablesBatteriesMeteringIndustrial and consumable connected devicesSecure connection establishment(TLS)Amazon AWS JIT and Microsoft Azure DPS device enrollmentWireless charging-Qi 1.3&2.0Matter compliantSTSAFE-A Optimized6STSAFE-TPMStandardized and high-end
8、 security solutionNetwork infrastructure(Routers,5G equipment,Gateway)Platform integrity on PCIndustrial machinesFactory robots PLCEV Charging Surveillance cameraSolar energy farmsHealth(Monitoring system)STM32MP1 platform based systemWPC Qi 2.0 authentication for AutomotiveMatter with full process
9、services supportSecure connection establishment(TLS)Industrial and consumable connected devicesConsumables and accessories authenticationTurn-key solution with Secure Manufacturing and ProvisioningCustomerChip development and packagingPersonalizationST PERSONALIZATION FACTORYHardwareSecurityModuleUn
10、ique customer secret keys&certificates7Secure EnvironmentFlow and facilities approved by security authorities.Best-in-class HWCredentials pre-loadedAvoid manufacturing leakageReduce time-to-marketOur Mission:At ST we do believe that your valuable data and device deserve security at the edge,its why
11、ST come with STSAFE.Our Services:Turnkey solution with ST provisioning dramatically security at edge and complete ecosystem for easy integration,save investment on security.Our Offer:Best in class HW platform with CC certified to protect your data,and system from device to cloud.Take awayNovember 20
12、22STSAFE With MatterMatter Overview with STSAFEConnect Matter devices with STSAFE10Thread BRZigbee/BLE Mesh bridgeMatter BulbDevice attestation certificatePAIcertificateDevice Attestation private keyPAA CertificateMatter Provisioning with STSAFEConnect Matter devices with STSAFE11HardwareSecurityMod
13、uleST PERSONALIZATION FACTORYCSA Distributed Compliance LedgerProduct Attestation Authority(PAA)CertificateProduct Attestation Intermediate(PAI)CertificateDevice Attestation Certificate(DAC)QueryDevice attestation certificatePAIcertificateDevice Attestation private keyPAA CertificatePAA CertificateM
14、atter Commissioning with STSAFECommissioneeI2C/SPICommissionerPasscode-Authenticated Session EstablishmentPAAcertificateDevice Attestation CSA Distributed Compliance LedgerOnboarding payloadNode Operational Certificate Provisioning Certificate-authenticated session establishmentTurnkey solutions:Sec
15、ure provisioning of Matter Credential.Security protocols and algorithms strong support.Complete ecosystem based on Linux/RTOS platform.STSAFE-TPMSTSAFE-TPM Agenda#STSAFE-TPM market#STSAFE-TPM use cases#STSAFE-TPM offering#STSAFE-TPM roadmap14#Takeaways#STSAFE-TPM certificationTCG TPM Certification P
16、rogram4Wide coverage:STSAFE-TPM certification6STSAFE-TPM is a widely deployed,standardized solution.TPM specifications are approved as ISO/IEC international standard(ISO/IEC 11889).All STSAFE-TPM products are certified by CC and FIPS 140-2 and meet security and regulatory requirements.Standardized&C
17、ertified TPMTCG CertificationFIPS 140-2Common CriteriaSTSAFE-TPM market trend17TPM 2.0 mandatory from W10Wide deployment in PC and Server marketLinux Open sourceTPM driver at kernel-TPM2.0 since v4.5/v4.8Software stack,tools etc.Embedded OSTPM main uses cases18Device IdentityIs my device genuine?Res
18、ist HWTamperingProtect against SW&HW attacksDevice HealthIs my device running as expected?Protect Data In Use/TransitData and configuration sealingWireless QiChargingIn-car smartphone ChargingRemote ManagementZero touch fieldfirmware upgradeSymmetric algorithms and keys(3DES,AES)Asymmetric algorithm
19、s and keys(RSA,ECC)Digest Hash algorithms(SHA-1,SHA256,SHA384,SHA512,SHA3)TPM 2.0 standard crypto agile:RSA,ECC,SHA/SHA2/SHA3,AES,HMAC,and more to comeSecurity supported by cryptographySTSAFE-TPM positioning and strategy19Leading positionBroad portfolioAdvanced technologyCertificationsEcosystemFirst
20、 32-bit secure MCU class TPMFirst certified IC TPM2.0Hold major market shareWide product offersST33TPHF2EST33TPHF2XST33KTPM2XST33KTPM2AST33KTPM2IArm coreState of the art securityBetter performanceLow power modeProprietary featuresTCG TPMCommon Criteria EAL4+FIPS 140-2 level 2New:FIPS SP800-90BNew:FI
21、PS 140-3Development boardLinux Kernel/TSS IC driver available through ST GitHubOpen SSL engineExpanding standardized trust:STSAFE-TPM20CERTIFIED CC EAL4+,TCG 2.0,FIPS140-2STSAFE-TPMPlatform integrity Secure bootSecure firmware upgradeCryptographic toolboxSecure storageLinux based MPU development kit
22、StandardizedLeader in PC market+Unique added valuesFault toleranceExtended cryptoLinux Open Source EcosystemKernel driver,Open source software stacksTCG StandardGeneric PartGeneric CP:No MOQ,to be served by sample order3Kp MoQ tape&reelCompliant with Raspberry Piand STM32MP1STPM4RasPITarget MarketsN
23、etworking,edge computing,other embedded Broad PortfolioConsumerIndustrialAutomotiveSTSAFE-TPM offering21AvailableEnsure platform integritycomputer,connected devices Secure the connected devices IoT nodes/gatewaysTCG TPM 1.2 and TPM 2.0 rev1.38Available in consumer,automotive and industrial qualifica
24、tions Upgradable firmwareLinux Open source ecosystem(driver,Software stacks,Linux open source)Provisioning serviceCommon criteria EAL4+&FIPS 140-2 level 2 certifiedConsumer equipment2E:TCG TPM 1.2/TPM 2.020:TCG TPM 2.0ST33TPHF20/2EConsumer equipmentTCG TPM 2.0Extended cryptographyEnhanced security s
25、upport ST33TPHF2XAvailableExpanding standardized trust from personal computing to connected devices Industrial environment(JEDEC)TCG TPM 2.0Enhanced cryptographyEnhanced security supportST33GTPMIAvailableAutomotive environment(AEC-Q100)TCG TPM 2.0Enhanced cryptographyEnhanced security supportST33GTP
26、MAAvailableSTSAFE-TPM roadmap22ST33TPHF2X&ST33GTPMAST33H/ST33G hardwareTPM 2.0 only rev 138CC EAL4+(AVA_VAN.5)FIPS 140-2SPI 33MHz&I2C 400Khz-40C;+105CFault tolerant TPM firmware updateEnhanced crypto(SHA384,ECC384)Enhanced performance Win10 19H1/19H2/20H1/20H2 compliantST33TPHF2X>PMATPM 2.0TPM 2.0
27、ST33TPHF2X&ST33GTPMA/IST33H/ST33G hardwareTPM 2.0 rev 138 errata 1.12CC EAL4+(AVA_VAN.5)FIPS 140-2 w/SP800-90B complianceSPI 33MHz&I2C 400Khz-40C;+105CEnhanced crypto(RSA3072)Win 11 21H2&22H2 certifiedFirmware image TPM 2.0 rev 159&PTP 1.05 for 2022ST33TPHF2X>PMA/ITPM 2.0TPM 2.0ST33KTPM2XSPI/I2CST
28、33K hardwareTPM 2.0 rev 159&PTP 1.05CC EAL4+&FIPS 140-3SPI 66MHz&I2C 1 Mhz-40C;+105CIncreased security Increased performanceWin11 22H2 certifiedST33KTPM2XSPI/I2CTPM 2.0TPM 2.0ST33KTPM2X2/2A/2IIndustrial&Automotive qualificationsST33KTPM2X:2 front end fabs qualified(SSG&ST Crolles)TPM 2.0 rev 159&PTP
29、 1.05CC EAL4+&FIPS 140-3SPI 66MHz&I2C 1 Mhz-40C;+105CIncreased security Increased performanceWin11 22H2 certifiedST33KTPM2XSPI/I2CST33KTPM2A/2ITPM 2.0TPM 2.0Compliant with NIST SP800-193 guidelines for platform resilienceTPM self-recovery in case of firmware upgrade failure or firmware and critical
30、data integrity failure at boot timeCryptographic extended services and key strengths suitable for long lifetime productsSupport of ECC384,SHA-384,SHA3,AES 256 Support of symmetric bulk encryptionProvisioning time/cost reduction Enhanced performance for RSA key generation thanks to 3 RSA keys preprov
31、isionedSupport for IoT uses cases like attached biometric devices or tamper evidence detectionSupport of GPIOs input and output managed with TPM security policies/authenticationSecurity countermeasures to resist state-of-the-art attacks recognized by certificatesCommon Criteria:EAL4+with vulnerabili
32、ty assessment level 5(high potential attack)andFIPS 140-2:level 2 with physical security level 3Flexible NV memory management Shareable NV memory for keys and NV indexes(35kB)New featuresRSA4096 supportRandom generator certified SP800-90BST33TPHF2X/GTPMA/GTPMI key features summary23/XXPc-Server-Embe
33、dded ecosystemDevice NamePhaseOrderingPart Number(1)TPM VersionFirmwareversionReleaseNoteStatusCC EAL4+FIP 140-2Microsoft CompatibilityST33TPHF2XSPI2019ST33HTPH2X32AHC4TPM 2.0Rev 138Errata 1.4+PTP 1.031.256Fault tolerant FUEnhanced cryptoGPIO supportSHA384+ECC384DiscontinuedCC ANSSI-CC-2019/37High a
34、ttack potential(AVA_VAN.5)Oct/19TCG Certificate Dec/19FIPS 140-2#3650 May/20Win10 19H1 certifiedExpired for Client and serverST33TPHF2XSPI2019ST33HTPH2X32AHD4TPM 2.0Rev 138Errata 1.4+PTP 1.031.257System Guard Integration fixProductionWin10 20H1 certifiedExpired for ClientST33TPHF2XSPI2019ST33HTPH2X3
35、2AHD81.258Boot Guard ACMIntegration fixProductionCC ANSSI-CC2019/37-M02Apr/20FIPS 140-2#3650 Aug/20Win11 21H2 certifiedST33TPHF2XSPI2021ST33HTPH2X32AHE0TPM 2.0Rev 138 Err 1.12+PTP 1.041.512SP800-90BRSA3072-SPI Interrupt fixProductionCC ANSSI-CC-2021/40TCG Certificate Dec/21FIPS 140-2#4304(Sep/22)FIP
36、S ESV(Mar/23)Win11 21H2 certifiedWin11 22H2 certifiedST33TPHF2XSPI2022ST33HTPH2X32AHE4TPM 2.0Rev 159 Err 1.1+PTP 1.05 Err 1.01.769Upgrade TPM Library 1.59&Minor fixesProduction&Recommended for new designs&Mass MarketCC ANSSI-CC-2022/48TCG certificate(Jan/23)FIPS 140-2#4304(Oct/22)FIPS ESV(Mar/23)Win
37、11 22H2 certifiedSTSAFE-TPM-ST33TPHF2XSPI25Public ST33TPHF2XSPI Lite datasheet:https:/ ESV:Entropy Validation Server:specific certificate for SP800-90B compliant random generatorESV certificate can be leveraged for FIPS 140-3 evaluations.Product NamePhaseOrderingPart Number(1)TPM VersionFirmwarevers
38、ionReleaseNoteStatusCC EAL4+FIP 140-2CommentST33TPHF2XI2C2019ST33HTPH2XpkAHC5TPM 2.0Rev 138Errata 1.4+PTP 1.32.256Fault tolerant FU+Enhanced crypto+GPIO supportDiscontinuedCC Certificate High attack potential(AVA_VAN.5)Oct/19TCG Certificate Dec/19FIPS Certificate May/20Linux driver supportUboot driv
39、er supportST33TPHF2XI2C2020ST33HTPH2X32AHD5TPM 2.0Rev 138Errata 1.4+PTP 1.32.272IC real time improvementsProductionCC certificate Apr/20FIPS certificate Aug/20ST33TPHF2XI2C2020ST33HTPH2X32AHE1TPM 2.0Rev 138Errata 1.12+PTP 1.42.512SP800-90BRSA3072Production&Recommended for new design&Mass MarketCC AN
40、SSI-CC-2021/40TCG Certificate Dec/21FIPS 140-2#4304(Sep/22)FIPS ESV(Mar/23)STSAFE-TPM-ST33TPHF2XI2C26Note(1):pk in ordering part number refers to product package;28 for TSSOP-28 and 32 for QFN32Public ST33TPHF2XI2C Lite datasheet:https:/ ESV:Entropy Validation Server:specific certificate for SP800-9
41、0B compliant random generatorESV certificate can be leveraged for FIPS 140-3 evaluationsProduct NamePhaseOrderingPart Number(1)TPM VersionFirmwareversionReleaseNoteAvailabilityCCFIP140-3CommentST33KTPM2XSPI2022ST33KTPM2X32CKE2TPM 2.0Rev 159 Err 1.3+PTP 1.05 Err 1.09.256PQC firmware upgrade(AES-256&S
42、HA-384)(1)-RSA 4096 support-Improved performance-Thinner package(0.55mm)ProductionCC EA4L+&TCG Feb/23FIPS 140-3 level 1Sep/23(2)Win11 22H2 certifiedST33KTPM2XI2CST33KTPM2X32CKE3ST33KTPM2XSPI2023ST33KTPM2X32DKG8TPM 2.0Rev 159 Err 1.3+PTP 1.05 Err 1.09.257Communication optimization(3)-Dual wafer sourc
43、ing(ST Crolles+Samsung Foundries)Firmware image(4)&Production parts Sep/23Production ramp upQ1/24CC EAL4+&TCG Sep/23FIPS 140-3 Level 1Dec/23Win11 23H2 targetedST33KTPM2XI2CST33KTPM2X32DKG9STSAFE-TPM ST33KTPM2XSPI/I2C271.PQC:Post Quantum Cryptography:Firmware upgrade blobs are protected individually
44、with AES-256 for confidentiality and SHA-384 integrity.AES-256 and SHA384 are algorithms quantum resistant that can be evaluated and certified by Common Criteria in 2023.2.FIPS 140-3 certificate availability delayed to Sep/23 due to the extremely long time between the end of the evaluation and the s
45、tart of the certification process(around 6 months to start the certification process followed by 5-6 months required by CMVP to review the report and release the official certificate)3.Optimization of number of SPI wait state cycles in case of register write access(max 4 wait cycles from 9.257).4.Fi
46、rmware image 9.257 is loadable on ST33KTPM2X32CKE2 and ST33KTPM2X32CKE3TPM Industrial/ConsumerProduct NamePhaseOrderingPart NumberTPM VersionFirmwareversionReleaseNoteStatusAvailabilityCC EAL4+FIP140-2CommentST33GTPMISPI2020ST33GTPMIWLFZE4TPM 2.0Rev 138Errata 1.43.257First TPM In WLCSP package Disco
47、ntinued(PTN 13917)Available(Sep/20)CC Certificate High attack potential(AVA_VAN.5)Dec/20FIPS CertificateDec/20TCG certificate Feb/21Available in WLCSP packageST33GTPMII2CST33GTPMIWLFZE56.257ST33GTPMISPI2021Not applicableTPM 2.0Rev 138Errata 1.123.512RSA3072SP800-90BDiscontinued(PTN 13917)Firmware im
48、ageavailableCC ANSSI-CC-2021/40TCG Certificate Dec/21FIPS 140-2#4304(Sep/22)Available in firmware image to upgrade ZE4/ZE5 partsST33GTPMII2CNot applicable6.512STSAFE-TPM-Industrial-ST33GTPMISPI/I2C29Product NamePhaseOrderingPart Number(1)TPM VersionFirmwareversionReleaseNoteAvailabilityCC EAL4+FIPS1
49、40-3CommentST33KTPM2IBeta samplesB1ST33KTPMIpk10001TPM 2.0Rev 159 Err 1.3+PTP 1.05 Err 1.0SPI or IC support10.1Production HW(IC+Package)TPM FW production-gradeTest Provisioning(EK Certificates)Samples(5-10 per order)AvailableNot applicableDatasheetST33KTPM2I AvailableST33KTPM2IBeta samplesB2ST33KTPM
50、Ipk1000210.2Production HW(IC+Package)Final production TPM FWTest Provisioning(EK certificates)Samples(5-10 per order)Mar/23Not applicableST33KTPM2IProdST33KTPM2IpkBZA910.257Production HWProduction firmwareProduction provisioningProduction partsJul/23CC&TCG Q4/23FIPS 140-3 Q4/23Datasheet ST33KTPM2IAv
51、r/23STSAFE-TPM ST33KTPM2I30Note(1):pk in ordering part number refers to product package;WL for WLCSP24 and 3W for UFQFN32 Wettable flanksTPM AutomotiveProduct NamePhaseOrderingPart NumberTPM VersionFirmwareversionReleaseNoteAvailabilityCC EAL4+FIP140-2CommentST33GTPMASPI2019ST33GTPMA020FAE5TPM 2.0Re
52、v 138Errata 1.43.256NowCC ANSSI-CC-2019/37High attack potential(AVA_VAN.5)Oct/19TCG Certificate Dec/19FIPS 140-2#3650 May/20Available in TSSOP20 packageST33GTPMAI2CST33GTPMA020FAE66.256ST33GTPMASPI2021Not applicableTPM 2.0Rev 138Errata 1.123.512RSA3072SP800-90BFirmware imageavailableCC ANSSI-CC-2021
53、/40TCG Certificate Dec/21FIPS 140-2#4304(Sep/22)Available in firmwareimage to upgrade AE5/AE6 partsST33GTPMAI2CNot applicable6.512STSAFE-TPM Automotive-ST33GTPMASPI/I2C32Product NamePhaseOrderingPart Number(1)TPM VersionFirmwareversionReleaseNoteAvailabilityCC EAL4+FIPS140-3CommentST33KTPM2ABeta sam
54、plesB1ST33KTPMApk10001TPM 2.0Rev 159 Err 1.3+PTP 1.05 Err 1.0SPI or IC support10.1Production HW(IC+Package)TPM FW production-gradeTest Provisioning(EK Certificates)Samples(5-10 per order)AvailableNot applicablePreliminaryDatasheetST33KTPM2A v0.1 Feb/23ST33KTPM2ABeta samplesB2ST33KTPMApk1000210.2Prod
55、uction HW(IC+Package)Final production TPM FWTest Provisioning(EK certificates)Samples(5-10 per order)Mar/23Not applicableST33KTPM2AProdST33KTPM2ApkBAC510.257Production HWProduction firmwareProduction provisioningProduction partsJul/23CC&TCG Q4/23FIPS 140-3 Q4/23Datasheet ST33KTPM2AAvr/23STSAFE-TPM S
56、T33KTPM2A33Note(1):pk in ordering part number refers to product package;T2 for TSSOP20 and 3W for UFQFN32 Wettable flanksTPM recommended part&Eval board ST33TPHF2X generic partSPI TPM2.0:ST33HTPH2X32AHE4I2C TPM2.0:ST33HTPH2X32AHE1 STPM4RasPI is an official extension board connecting to Raspberry Pid
57、evice.40-pin female connector to plug on Raspberry PiI2C TPM compatible serial interfaceCP:SCT-TPM-RASPIHD5SPI TPM compatible serial interfaceCP:SCT-TPM-RAS2XSPI34Download ST33TPHF2XSPI TPM2.0 DB hereDownload ST33TPHF2XI2C TPM2.0 DB hereDownload STPM4RasPIDB hereSTSAFE-TPM Key Summary35 State-of-art
58、 technology and additional security features help to protect against advanced attacksTCG,Common Criteria,and FIPS certified Broad portfolio could satisfy diverse applicationsConsumer TPM:ST33TPHF2X,ST33KTPM2XIndustrial TPM:ST33KTPM2IAutomotive TPM:ST33KTPM2A TPM firmware with fault tolerance loading
59、Resilience during TPM firmware upgrade Proprietary features for embedded use casesAdvanced cryptography and key lengths,GPIO,bulk encryption,performance,NV memory and low power behavior STMicroelectronics-All rights reserved.ST logo is a trademark or a registered trademark of STMicroelectronics International NV or its affiliates in the EU and/or other countries.For additional information about ST trademarks,please refer to other product or service names are the property of their respective owners.Find out more at