SLM 9670

Overview

Standardized and certified TPM 2.0 security solution for industrial & demanding applications

The OPTIGA™ TPM SLM 9670 is a member of the OPTIGA™ TPM family. It addresses the requirements of industrial and other demanding applications where an extended temperature range, an extended lifetime and industrial-grade quality are key.

Pushing beyond the qualifications processes performed for standard TPMs, the OPTIGA™ TPM SLM 9670 is qualified according to the industrial JEDEC JESD47 standard to enable the requisite performance under demanding environmental conditions.

OPTIGA™ TPM SLM 9670 offers high levels of flexibility to address innovative use cases of Smart Factories and Industry 4.0 that call for robust security:

  • Strong digital device ID and device authentication
  • Secured communication for data confidentiality and IP protection
  • Integrity protection of devices and software  incl. software updates

The answer to smart factories`security challenges: OPTIGA™ TPM SLM 9670

OPTIGA™ TPM SLM 9670 offers high levels of flexibility to support innovative smart factory and Industry 4.0 use cases that call for robust security based on:

  • Strong digital device IDs and device authentication
  • Secured communication for data confidentiality and IP protection
  • Integrity protection of devices and software , software updates included

SLM 9670 is equipped with a variety of functions to secure industrial devices and systems. These include:

  • Key storage and management
  • Identification and authentication
  • Signature generation and verification
  • Software and firmware integrity attestation
  • Secured logging and secured time

OPTIGA™ TPM SLM 9670 is fully compliant with the Trusted Platform Module (TPM) standards issued by the Trusted Computing Group (TCG). It is listed within the TCG Certified Products List based on functional and security evaluations performed by an independent third party according to Common Criteria EAL4+. In addition, it is compliant with FIPS 140-2 Level 2 (Physical Security Level 3).

Based on the open, vendor-neutral global TPM standard created by TCG, the OPTIGA™ TPM family is a widely used and proven solution supported by a far-reaching ecosystem. Major rich operating systems support OPTIGA™ TPM, offering plug-and-play usability. Additionally, a wide selection of software offerings, including libraries and applications, is available from open source projects and leading commercial vendors – also through the Infineon Security Partner Network (ISPN).

  • Standardized security chip compliant with TCG TPM 2.0 standard
  • Secured storage for critical data and secrets
  • Advanced protection mechanisms against physical and logical attacks
  • Support of cryptographic algorithms RSA-1028, RSA-2048, ECC NIST P256, ECC BN256, SHA-1, SHA-256
  • temp. range -40°C to 105°C
  • lifetime of 20 years
  • JEDEC JESD47 industrial qualification
  • Independently security evaluated and certified

  • Industrial PCs
  • Servers
  • Programmable Logic Controllers (PLC)
  • Industrial Network Infrastructure & Equipment Including
    • Gateways
    • Routers
    • Wireless Access Points
    • Switches
Diagrams

Functional blocks of a TPM

The TPM supports key and lifecycle management with its unique endorsement key and key hierarchies. The non-volatile memory can be used to securely store sensitive data like certificates. It is based on tamper-resistant hardware with more than 50 security features including sensors and memory encryption capabilities for hardened protection of secrets. The TPM also features a secure tick counter for a trusted time source.

Block diagram of a TPM secured microcontroller

The OPTIGA™ TPM SLM 9670 hardware is based on a tamper-resistant secured microcontroller (MCU). It leverages advanced hardware security technology, including sophisticated hardware coprocessors and security peripherals, to deliver strong protection against logical and physical attacks.

Applications
Support