The reference design gives a confirmed option to implement safe firmware updates on safe and authorized and software program and is backed up by the cloud within the system’s code reminiscence.
The Winbond / Nuvoton / Qinglianyun answer will assist cut back the time it takes to develop new IoT units and assist OEMs get merchandise to market quicker for sensible metropolis, sensible residence, meter, industrial management and different safety-conscious functions carry.
The reference design is predicated on the Nuvoton M2351SF IoT safety MCU, a multi-chip module consisting of the M2351 IoT safety microcontroller and Winbond’s W77Q TrustME safe flash reminiscence IC. The M2351 microcontroller is predicated on the safe Arm Cortex-M23 processor core with TrustZone expertise. The module’s safe W77Q flash system is linked to the M2351 through an encrypted serial peripheral interface, which resists sniffer assaults on knowledge transmitted between the 2 chips.
To supply a Trusted Execution Setting (TEE) for safe OTA firmware replace operations and communication with the cloud, the system additionally runs Qinglianyun’s safe TinyTEE software program stack in TrustZone protected . Utilizing the safe 32 Mbit reminiscence offered by the W77Q, the reference design gives the next:
- Storage of safe and non-secure firmware and knowledge
- Authenticated entry management to make sure the integrity of firmware and knowledge
- Rollback safety
The TinyTEE software program on the M2351 connects to Qinglianyun’s safe cloud service, which gives a full suite of IoT system administration options similar to system authentication, safe storage, encryption module and true random quantity generator, and complies with World Platform’s TEE commonplace interface.
In consequence, the system gives a safe chain of belief for delivering OTA firmware updates from the cloud to W77Q Safe Flash storage, with none vulnerability to distant assaults or non-public knowledge disclosure.
The answer gives complete safety ideas. The W77Q helps guarantee sturdy end-to-end safety in IoT units by enabling:
· Protected storage
· Protected begin and root of belief
· Authenticated and encrypted knowledge switch between the flash system and the host
· Safe Execute-in-Place (XiP) of the beginning and utility code
· System stability that helps key safety, detection, and restoration features
The M2351 microcontroller additionally gives a number of safety features together with:
· Protected bootloader
· Hardware cryptographic accelerator
· Execute-only reminiscence
· Tampering detection pens