We detect you are using an unsupported browser. For the best experience, please visit the site using Chrome, Firefox, Safari, or Edge. X
0
$0.00
Item Qty
Your cart is empty.

Root of Trust Solutions

As the need for cybersecurity evolves, platforms must also evolve quickly to fight cyberattacks during start-up, real-time operation and system updates. If you are designing secure systems, the equipment used in these systems must be armed to fend off a multitude of potential threats. You need to investigate new technologies that will secure your systems at the hardware and firmware level.

Our platform and component root of trust solutions ensure cyber resiliency for end equipment. They go beyond NIST 800-193 Platform Firmware Resiliency (PFR) guidelines by providing runtime firmware protection that anchors the secure boot process while establishing an entire chain of trust for the system’s platform. Their device and firmware attestation features provide trustworthy evidence that will ensure that the device is authentic. The advanced Federal Information Processing Standards (FIPS) Cryptographic Algorithm Validation Program (CAVP) hardware cryptography engine verifies the signature and/or digests the code before execution. This ensures that the system only loads and uses the firmware that you want, protecting the system from malicious code.

Our portfolio is best suited for data center, storage, telecommunication, networking, industrial and automotive applications.

Explore Our Solutions

CEC173x Trust Shield

  • JIL Enhanced-Basic rating and meets Open Compute Project (OCP) security guidelines
  • SPI Flash monitoring
  • Device and firmware attestation
  • Physically Unclonable Function (PUF)
  • Fast secure boot with P-384 elliptic curve (< 45 ms to load 256 KB image)
  • SP800-90B Random Number Generator (RNG)
  • FIPS CAVP hardware cryptography engine

MEC1723

  • Low-power embedded controller with root of trust for computing applications
  • Pre-boot SPI image authentication
  • Supports AES-256, SHA-512, up to 4 Kbit RSA, ECC, ECDSA, TRNG
  • One Time Programmable (OTP) memory for key and ID storage
  • Key revocation
  • Code rollback protection
  • Intel® eSPI host interface, Advanced Configuration and Power Interface (ACPI) sleep states

CEC1712

  • CNSA secure boot with P-384 elliptic curve
  • FIPS 800-193 redundant boot
  • Key revocation
  • Code rollback protection
  • Boot ROM supports 4-byte SPI address mode
  • Received NIST Crypto Algorithm Validation Program (CAVP) validation for C592 and SHS 3823

Automotive CEC1712

  • −40C to +125°C AEC-Q100 Grade 1
  • NIST 800-193 (PFR)
  • Key revocation
  • Code rollback protection
  • Supports up to two external SPI Flash
  • Best suited for securing Ethernet and PCle® switches in ADAS and infotainment systems

Mature Products

The following devices are not recommended for new designs:

  • CEC1702
  • Automotive CEC1702