ModusToolbox™ for Security

综述

With ModusToolbox™ for Security, Infineon offers a comprehensive ecosystem of tools, middleware, libraries, code examples, user guides and application notes to facilitate the implementation of secured embedded systems with state-of-the-art security technologies and according to established industrial development practices. ModusToolbox™ for Security supports Infineon’s Industrial and IoT Microcontroller lines such as its PSoC 62/63 Performance Line, its PSoC 64 Secured MCU line, and its XMC 7000 industrial microcontroller line.

Off-the-shelf security with fast time-to-market

Platform Security Architecture (PSA) is a framework for the analysis, conception, implementation and certification of the security of embedded devices. and Trusted Firmware-M is a refence platform for PSA. Infineon was one of the first companies to embrace Trusted Firmware-M, ported it to its platforms, and has achieved PSA Certified Level 1 and 2 certifications for its microcontrollers by an independent, accredited certification lab.  This off-the-shelf security offering from Infineon gives you a head-start when in need of a proven security solution for your next product, cutting  your development times, and enabling secured products with considerably less know-how and effort. The pre-certified software bundle consisting of  theTrusted Firmware-M security stack, the hardware-accelerated Mbed TLS crypto library, and the bootloader are available in source code. This gives you full control to enhance and tailor them to your specific needs. As Trusted Firmware-M was specifically prepared for the integration of additional security functions, the integration of sensitive customer functions and assets into the security domain of your products is made easy, and Trusted-Firmware-M  protects them with its own defense mechanisms.

Scalable security with right-sized solutions

Whether you have advance security needs with the requirement for a separate security domain and sophisticated certificate-based device authentication services, or just the simple requirement of encrypting your microcontroller‘s communication:  Infineon covers it all. From an easy-to-use hardware-accelerated Cryptographic Peripheral Drivers Library, to an adaption of the powerful and feature-rich Mbed TLS crypto library, to one of the first implementations of Trusted Firmware-M on IoT Microcontrollers, Infineon offers you the right size of security for your product.

Infineon‘s security software offering is complemented by a set of fundamental development tools. They allow you to define and deploy your security configurations of the microcontrollers via security policies, and to provision your security assets such as keys and certificates as well as programming your firmware in the lab, on the manufacturing line or in the field.

Highlights

ModusToolbox™ for Security offers you comprehensive support of security-related functionality, from an industry-proven security stack to cryptographic libraries, to secure communication protocols, to secure boot and firmware update support. Some cornerstones of this portfolio are listed below:

Trusted Firmware-M (TF-M) Security Stack
With Trusted Firmware-M (TF-M), Infineon has brought a reference implementation of the Platform Security Architecture (PSA) to its microcontroller lines. It implements a Secure Processing Environment (SPE) separated from the application software space, key and certificate management, and cryptographic as well as other security services like attestation and protected and internal trusted storage. This is an industry-proven security stack that is widely acknowledge in the industry.

Mbed TLS Security Library Support
Mbed TLS is a cryptographic library for embedded devices that covers a comprehensive set of algorithms and protocols from encryption/decryption algorithms, to hashing algorithms, to protocols such as SSL/TLS and DTLS, and X.509 certificate handling. For state-of-the-art performance, Infineon has adapted Mbed TLS to the cryptographic hardware accelerators of its MCU lines.

Cryptographic Peripheral Driver (PDL) Library
This library provides support of basic cryptographic algorithms and is a simple to understand and easy to use entry point for users of cryptographic algorithms on Infineon’s IoT and industrial MCU lines. Support of cryptographic hardware acceleration guarantees state-of-the art performance.

Bootloader
To implement secure boot mechanism based on a chain-of-trust as well as secure firmware updates, Infineon offers a Bootloader based on the public McuBoot project. This Bootloader is enhanced with many value-add features.

Device Firmware Update (DFU)
Infineon offers a device firmware update middleware for connected and over-the-air (OTA) updates of its MCU lines. This supports connected serial interfaces as well as Wi-Fi and Bluetooth®, and is complemented by a PC-based Host Tool. With the source code available, it can be adapted to specific customer requirements.

Secure Sockets Library
This library allows application software to securely communicate over networks using a simple socket like interface. It abstracts the complexity involved in directly using the network  and security stack APIs of the underlying lwIP network stack and Mbed TLS cryptographic library. It supports both IPv4 and IPv6 addressing modes for UDP and TCP sockets.

To get started with ModusToolbox™ for Security, download the PSoC™ 6 MCU designing a custom secured system Application Note for the PSoC™ 62 – Performance Line or the Secure Boot SDK  for PSoC™ 64 - Secured MCU. Both MCU lines are integrated with the ModusToolbox™ Tools Package. Please refer to the ModusToolbox™ run-time software reference guide for more details.

To understand whether PSoC 62/63  or PSoC 64 is the right choice for your application with respect to security capabilities, please read the Security Comparison Between PSoC 64 Secure MCU and PSoC 62/63 MCU Application Note.

ICW certification

For its PSoC™ 64 - Secured MCU Line and its PSoC™ 62 – Performance Line, Infineon has achieved Platform Security Architecture (PSA) Level 2 respectively Level 1 Certifications. PSA CertifiedTM is an independent, standardized security certification for connected products.

PSA certificate of PSoC™ 64 Standard Secure - AWS MCU

PSA certificate of PSoC™ 64 Secure MCUs

For additional information on PSA CertifiedTM, please visit the arm website.

ICW Partners

Infineon partners with hardware, software and tools suppliers that have shown their competence in the area of embedded security and have proven their ability to design and deliver strong and trustworthy solutions, especially for new technologies and application fields. Together, Infineon and our partners help our customers to bring their solutions to production - faster and with lower efforts. See our Partner Network webpage for more information.

视频
Share
支持