State-of-the-art safety licensed to the newest customary for data safety certification, globally acknowledged and necessary for US federal procurement
STMicroelectronics has introduced the FIPS 140-3 certification of STSAFE-TPM trusted platform modules (TPMs), the primary standardized cryptographic modules available on the market to obtain this certificates.
The newly licensed TPMs, the ST33KTPM2X, ST33KTPM2XSPI, ST33KTPM2XI2C, ST33KTPM2I, and ST33KTPM2A present cryptographic asset safety to satisfy safety and regulatory necessities for crucial data methods. They’re utilized in PCs, servers, and network-connected IoT gadgets, in addition to medical and infrastructure high-assurance tools. The ST33KTPM2I is certified for lengthy lifetime industrial methods. ST33KTPM2A commercialized underneath the identify STSAFE-V100-TPM leverages an AEC-Q100-qualified {hardware} platform required for automotive integration.
FIPS 140-3 is the newest model of the federal data processing requirements (FIPS) specs for cryptographic modules, superseding FIPS 140-2. “All FIPS 140-2 certificates are scheduled to run out in September 2026,” commented Laurent Degauque, Advertising Director, Linked Safety, STMicroelectronics. “By reaching FIPS 140-3, our TPMs are uniquely prepared for brand spanking new designs and let prospects create safe, interoperable tools with prolonged product and certification lifetimes.”
The merchandise assist use instances like safe boot, distant/nameless attestation, and safe storage with an prolonged person reminiscence of 200kBytes. As well as, every product helps safe firmware replace so as to add new cryptographic algorithms like PQC and preserve state-of-the-art cryptographic asset safety.
The STSAFE-TPM gadgets are compliant with a number of business safety requirements. These embody Trusted Computing Group TPM 2.0 relevant to trusted platform modules, Widespread Standards EAL4+, passing the CC framework’s most stringent vulnerability evaluation (AVA_VAN.5), and now FIPS 140-3 degree 1 with bodily safety degree 3. They provide cryptographic companies (ECDSA & ECDH as much as 384 bits, RSA as much as 4096 together with key era, AES as much as 256 bits, SHA1, SHA2 and SHA3), standardized by TCG and appropriate with software program stacks underneath FIPS 140-3 certification.
ST additionally provides provisioning companies to load system keys and certificates to cut back the entire resolution price and time to market and to ensure the safety of the provision chain.
