SECORA™ ID Key security solutions

Infineon's all-in-one Java Card™ solution for secured USB & NFC tokens, dongles, authenticators, and security keys for FIDO and ePKI applications.

anchor

Overview

Seamless integration, enhanced performance, and maximized hardware-backed security. By combining a high-security crypto controller, USB and NFC connectivity, a Java Card™ 3.1 operating system, and flexible options for implementing ready-to-use applets, SECORA™ ID Key delivers a robust and user-friendly experience, enabling secured authentication, qualified signature creation, and a wide range of proprietary and customized use cases.

Key Features

  • High-performance Java Card™ platform
  • One-stop-shop for fastest T2M
  • World's 1st L3+ FIDO2 Authenticator (pending)
  • eIDAS compliant & QSCD listed ePKI
  • Custom applet development optional
  • Compact & reliable hardware
  • Optimized PCB footprint
  • Integrated USB & NFC interfaces
  • Security-certified offering

Products

About

Infineon ID Key – Single-package offering with USB integration

SECORA™ ID Key is based on the Infineon ID Key hardware platform that combines the security, performance, and reliability of the SLC3x security crypto controller with a USB-serial bridge controller in a unique system-in-package offering. This hardware offering supports all basic USB or USB & NFC token, dongle, authenticator, and  security key applications while reducing the bill of materials and associated costs.

  • Single package offering - SLC3x and USB serial bridge integrated in one single package, allowing for a small footprint and an easy assembly
  • Reduced system BOM - Two components in one device reducing the bill of materials and related costs
  • Large flash memory - Ample storage space and hosting of multiple applications on the platform possible
  • High-performance CPU - 100 MHz clocked SC300 Arm® 32-bit RISC CPU core enabling ultra-fast a- 
  • USB & NFC capabilities - Ability to address multiple use cases by integrating USB and NFC capabilities in one single device

SECORA™ ID Key - Infineon's Java Card™ solution for USB applications

SECORA™ ID Key is a USB and NFC enabled open-platform Java Card™ solution with optional, ready-to-use applets for authentication and qualified signature creation. Building on the ID Key hardware and the SECORA™ family's field-proven security technologies, it integrates the chip, USB (CCID  device class except for FIDO’s CTAPHID) and NFC connectivity, a system-in-package, OS, applets, middleware, and tools, offering a unique blend of high security, low total cost of ownership, and simplified deployment and maintenance.

  • One-stop-shop offering – With all necessary components provisioned, reducing supplier complexity and accelerating time-to-market 
  • World’s 1st Level 3+ FIDO2 Authenticator - certification in progress – Providing a competitive edge for your FIDO implementation
  • eIDAS compliant & QSCD listed – Providing EU-wide validity of e-signatures and facilitating seamless digital interaction across borders
  • Real open Java Card™ platform for customized applet development – Efficient OS on flexible, open platform increasing custom design flexibility and efficiency
  • Integrated USB & NFC interfaces – Enabling seamless integration, versatile connectivity, less engineering effort, and a small PCB footprint

Our high-security applet offering for FIDO Authentication

The FIDO standard enables users to authenticate themselves across multiple participating websites using a single token and thus reduce or eliminate reliance on passwords. The FIDO applet from Infineon’s applet collection is the world’s 1st Level 3+ FIDO2 Authenticator (certification in progress) providing a competitive edge for your FIDO2 implementation.

Key features of FIDO

  • Reduced complexity of password-based service logon
  • Increased security and strengthened protection against unauthorized access with greater ease of use
  • Increased trust in security of sensitive data and private accounts

Applications of the FIDO2 applet

  • Standalone applet for consumer and enterprise use cases
  • Second factor authentication to online transactions and services
  • Standalone use cases for personal as well as enterprise authentication

Compliance and certification

  • FIDO CTAP specification v2.1 (available soon)
  • Authenticator Level 3+ - Pending FIDO Alliance certification
  • Based on EAL6+ certified Java Card™ platform 

Our applet offering for qualified signature creation

Infineon's ePKI (electronic PublicKey Infrastructure) applet runs on the SECORA™ ID Key platform. It supports all functionality required by Secured/Qualified Signature Creation Devices (SSCD/QSCD). 

The ePKI applet supports the following applications

  • Proving identity: eAuthentification
  • Validating authenticity and integrity of data and protecting against forgery: eSignature
  • Determining, based on an established identity, the associated privileges: eAuthorization
  • Secured information transfer for maximum confidentiality: data encryption/decryption and secured file transfer

In addition, the ePKI applet can be used for digitally signing electronic documents, logging in to Windows systems and authenticating to online services.

The ePKI applet supports on-device key generation as well as key import based on elliptic curves and RSA. PACE, a well-established security protocol supporting PIN, PUK and CAN helps to secure the communications. The ePKI applet is highly configurable and can easily support different local or domestic requirements without software modifications. This makes it suited to a variety of use cases, while maintaining compliance with Common Criteria standards.

 

OurISO File System applet offering for customer's design flexibility

 The ISO FS (File System) applet is one of the most essential parts of Infineon applet collection, enabling designers to customize their end products in accordance with their individual needs. It runs on the SECORA(TM) ID Key platform and allows customer data to be securely stored and protected by well-trusted security protocols and secured authentication mechanisms. 

Infineon offers customers full flexibility to design the  USB or USB & NFC token, dongle, or authenticator of their choice. With the dedicated File System Explorer software tool, customers can visually define their individual file structure, personalize their files, and test and verify the final document in operation.

The ISO FS applet is designed according to the ISO/IEC 7816-4/8/9 standards. 

Infineon ID Key – Single-package offering with USB integration

SECORA™ ID Key is based on the Infineon ID Key hardware platform that combines the security, performance, and reliability of the SLC3x security crypto controller with a USB-serial bridge controller in a unique system-in-package offering. This hardware offering supports all basic USB or USB & NFC token, dongle, authenticator, and  security key applications while reducing the bill of materials and associated costs.

  • Single package offering - SLC3x and USB serial bridge integrated in one single package, allowing for a small footprint and an easy assembly
  • Reduced system BOM - Two components in one device reducing the bill of materials and related costs
  • Large flash memory - Ample storage space and hosting of multiple applications on the platform possible
  • High-performance CPU - 100 MHz clocked SC300 Arm® 32-bit RISC CPU core enabling ultra-fast a- 
  • USB & NFC capabilities - Ability to address multiple use cases by integrating USB and NFC capabilities in one single device

SECORA™ ID Key - Infineon's Java Card™ solution for USB applications

SECORA™ ID Key is a USB and NFC enabled open-platform Java Card™ solution with optional, ready-to-use applets for authentication and qualified signature creation. Building on the ID Key hardware and the SECORA™ family's field-proven security technologies, it integrates the chip, USB (CCID  device class except for FIDO’s CTAPHID) and NFC connectivity, a system-in-package, OS, applets, middleware, and tools, offering a unique blend of high security, low total cost of ownership, and simplified deployment and maintenance.

  • One-stop-shop offering – With all necessary components provisioned, reducing supplier complexity and accelerating time-to-market 
  • World’s 1st Level 3+ FIDO2 Authenticator - certification in progress – Providing a competitive edge for your FIDO implementation
  • eIDAS compliant & QSCD listed – Providing EU-wide validity of e-signatures and facilitating seamless digital interaction across borders
  • Real open Java Card™ platform for customized applet development – Efficient OS on flexible, open platform increasing custom design flexibility and efficiency
  • Integrated USB & NFC interfaces – Enabling seamless integration, versatile connectivity, less engineering effort, and a small PCB footprint

Our high-security applet offering for FIDO Authentication

The FIDO standard enables users to authenticate themselves across multiple participating websites using a single token and thus reduce or eliminate reliance on passwords. The FIDO applet from Infineon’s applet collection is the world’s 1st Level 3+ FIDO2 Authenticator (certification in progress) providing a competitive edge for your FIDO2 implementation.

Key features of FIDO

  • Reduced complexity of password-based service logon
  • Increased security and strengthened protection against unauthorized access with greater ease of use
  • Increased trust in security of sensitive data and private accounts

Applications of the FIDO2 applet

  • Standalone applet for consumer and enterprise use cases
  • Second factor authentication to online transactions and services
  • Standalone use cases for personal as well as enterprise authentication

Compliance and certification

  • FIDO CTAP specification v2.1 (available soon)
  • Authenticator Level 3+ - Pending FIDO Alliance certification
  • Based on EAL6+ certified Java Card™ platform 

Our applet offering for qualified signature creation

Infineon's ePKI (electronic PublicKey Infrastructure) applet runs on the SECORA™ ID Key platform. It supports all functionality required by Secured/Qualified Signature Creation Devices (SSCD/QSCD). 

The ePKI applet supports the following applications

  • Proving identity: eAuthentification
  • Validating authenticity and integrity of data and protecting against forgery: eSignature
  • Determining, based on an established identity, the associated privileges: eAuthorization
  • Secured information transfer for maximum confidentiality: data encryption/decryption and secured file transfer

In addition, the ePKI applet can be used for digitally signing electronic documents, logging in to Windows systems and authenticating to online services.

The ePKI applet supports on-device key generation as well as key import based on elliptic curves and RSA. PACE, a well-established security protocol supporting PIN, PUK and CAN helps to secure the communications. The ePKI applet is highly configurable and can easily support different local or domestic requirements without software modifications. This makes it suited to a variety of use cases, while maintaining compliance with Common Criteria standards.

 

OurISO File System applet offering for customer's design flexibility

 The ISO FS (File System) applet is one of the most essential parts of Infineon applet collection, enabling designers to customize their end products in accordance with their individual needs. It runs on the SECORA(TM) ID Key platform and allows customer data to be securely stored and protected by well-trusted security protocols and secured authentication mechanisms. 

Infineon offers customers full flexibility to design the  USB or USB & NFC token, dongle, or authenticator of their choice. With the dedicated File System Explorer software tool, customers can visually define their individual file structure, personalize their files, and test and verify the final document in operation.

The ISO FS applet is designed according to the ISO/IEC 7816-4/8/9 standards. 

Developer community

{ "ctalist":[ { "link" : "https://community.infineon.com/t5/forums/postpage/choose-node/true", "label" : "Ask the community ", "labelEn" : "Ask the community " }, { "link" : "https://community.infineon.com/t5/Forums/ct-p/products", "label" : "View all discussions ", "labelEn" : "View all discussions " } ] }