STMicroelectronics launched STM32Trust to build strong cyber-protection into IoT devices, taking advantage of features built into STM32* microcontrollers to ensure trust among devices, prevent unauthorized access, and resist side-channel attacks.
“Connected devices like smart sensors and remote actuators are intrinsic to our infrastructure and services, so ensuring effective security becomes of paramount importance,” explained Ricardo De Sa Earp, General Manager of STMicroelectronics’ Microcontroller Division. “STM32Trust eases developers’ understanding and acceptance of the new mandatory security rules, which is a key emerging challenge in the general-purpose microcontroller market today.”
Integrating all available cyber-protection resources for the STM32 family, STM32Trust helps designers implement a robust multi-level strategy leveraging security-focused chip features and software packages. Depending on the model, hardware cyber-protection can include features such as customized secure boot, a random-number generator to prevent hackers observing patterns in signals, dedicated encryption co-processors, and secure storage for encryption keys. ST also builds in tamper detection, firewall code-isolation mechanisms and implements Arm TrustZone technologies for extra protection of the most sensitive code.
Among the reference software packages, X-CUBE-SBSFU demonstrates how to protect application code at its most vulnerable when being transferred into boot memory or updated in the field. X-CUBE-SBSFU reference packages are available for the STM32F4, F7, H7, L0, L1, L4, G0, G4, and WB. There is also a reference implementation of ST’s secure element STSAFE, which maximizes the security level of the final application.
In addition, Secure Firmware Installation solutions for STM32L4 and STM32H7 microcontrollers provide protection while devices are being programmed for the first time. The solution offers a complete toolset to encrypt OEM binaries with the Trusted Package Creator software, the STM32CUBEProgrammer to flash the STM32 securely, and the STM32HSM to transfer OEM credentials to the programming partner.
Visit www.st.com/stm32trust for more.