Professional Documents
Culture Documents
Marketing Presentation
V1.3
Agenda
2
What security means for us?
Protection
Customer
requirements
Assets
Threats exploit
Vulnerabilities and damage
Assets.
Protections mitigate
Vulnerabilities and therefore
might mitigate Threats.
Customer Assets Threats Vulnerabilities
Security
functions
Mitigate
IP System trust
Software Regulations
Data Reliability
Processes Availability
Secrets Authentication
Confidentiality
6
From assets to security functions
STM32Trust simplifies the mitigation model analysis with: STM32Trust Security Functions
• Pre-analyzed threats and vulnerabilities Identification / Authentication / Attestation
• Mitigation with ready to use Security Functions & Services Application Life Cycle
Secure Manufacturing
IP Secure Storage
Isolation
System trust
Abnormal Situations Handling
Secure Boot
Crypto Engine
Audit / Log
Mitigate 7
From device to application
security assurance level
• STM32Trust focusing on 2 de-facto product certification schemes:
EN 303 645
IEC 62443
8
Security assurance & certifications
Product certification status
STM32U5
1M
STM32 L4+
C-M3 C-M33
512 K
STM32 L4
STM32
384 K
L5
STM32 L1
256 K
C-M0+
128 K
Highest DMIPS
STM32 L0
64 K Best ULP
32 K
16 K
8K
233 155 447 285 370 535 ULPMark-CP
11
Enhanced security
Security assurance
Isolation Cryptography
level
Side channel AES, PKA
TrustZone® L3 L3
Additional AES, PKA, SHA,
Secure Peripherals
TRNG
1st MCU
Secure DMA
CAVP certified CryptoLib to reach Level 3
OTP, HDP, WRP, RDP, MPU 4x active pair of tamper pins. TF-M, Secure Boot,
RDP: 4 protection level states
Ext. Flash encryption OTFDec Volt. &Temp. monitoring (Vbat) Secure Firmware Install
Password based regression
Secure Debug Total tamper I/Os: 8 Hardware Unique Keys
14
Customer example (2/6)
focus on isolation and IP protection
Jon has a company selling firmware
My Asset
His firmware is of highest value, as mainstream royalties' revenue
is my IP
It features user enable application options
STM32Trust simplifies the mitigation model analysis with: STM32Trust Security Functions
• Pre-analyzed threats and vulnerabilities Identification / Authentication / Attestation
• Mitigation with ready to use Security Functions & Services Application Life Cycle
Secure Manufacturing
Software IP Protection
Treats Vulnerabilities
Silicon Device Life Cycle
Data confidentiality Device identity
Data Secure Install / Update
Data integrity Software & Updates
Identification / Authentication /
Abnormal Situations Handling
Attestation
22
www.st.com/STM32Trust
The 12 security functions
definitions
1- Secure Boot 2- Secure Install / Update 3- Secure Storage 4- Isolation
9- Silicon Device Lifecycle 10- Software IP Protection 11- Secure Manufacturing 12- Application Lifecycle
23
Focus on secure firmware installation &
secure boot
Focus
embedded secure firmware install - SFI
Manage STM32 authentication, firmware decryption and installation
STM32
3rd Party premises
SMI
SMI Firmware cloning
Encrypted
Authenticate target STM32
Generate installation license protection on the first Protect 3rd party
Module Encrypted Module
Module transfer installation Software IP
Store encryption via (SMI)
key in HSM HSM
Physical transfer UART / SPI / USB
Trusted Package Creator
ST Hardware Secure
Module (HSM)
25
Focus
secure boot secure FW update - SBSFU
Reference library source code for
In-application Programming
26
Security functions by product
Security functions by product
STM32F4/F7/L1/WB/G0/G4/H7/L0/L4 STM32MP1 STM32L5/U5 with TrustZone + STSAFE-A/TPM
Security Function
Silicon Firmware Silicon Firmware Silicon Firmware Silicon
Secure Boot √ √ √ √
TF-A
TFM_SBSFU
SBSFU
Secure Install/Update √ √ √ √
OPTEE
(WB)
Secure Storage (L0/L4/H7/G0/G4) √ OPTEE √ TF-M SPE √
SBSFU KMS (L4)
Isolation √ √ √ √
OPTEE TFM
Abnormal situations
√ √ √
handling
Crypto Libraries
Crypto Engine √ Crypto Libraries √ OPTEE √ √
TF-M
Audit/Log √ TF-M
ID/Auth/Attestation √ √ √ TF-M Attestation √
Silicon Device LifeCycle √ √ √