STM32Trust security framework
STM32Trust offers a robust multi-level strategy to enhance security in new product designs based on our STM32 microcontrollers and microprocessors augmented with STSAFE secure elements.
STM32Trust is a security framework combining our knowledge, ecosystem, and security services. This solution offers developers a complete toolset to protect their design’s valuable assets, such as software IP and data, and to ensure secure connectivity and system integrity.
With a set of 12 security functions offering hardware, software, and design services from ST and third parties, STM32Trust complies with the requirements of the major IoT certification schemes.
STM32Trust overview
Click to enlarge image
STM32Trust brings 12 security functions & services to align with asset-protection use cases and to provide the right security assurance levels
Secure boot
Ability to ensure the authenticity and integrity of an application that runs inside a device
|
Audit/Log
Keep trace of security events in an unchangeable way
|
Secure Install/Update
Installation or update of firmware with initial checks of integrity and authenticity before programming
|
Identification / Authentication / Attestation
Unique identification of a device and/or software package, and ability to detect its authenticity, from inside the device or externally
|
Secure Storage
Ability to securely store secrets like data or keys (and to access them without them being visible externally)
|
Silicon Device Lifecycle
Control states to securely protect silicon-device assets through a constrained path
|
Isolation
Isolation between trusted and non-trusted parts of an application
|
Software IP Protection
Ability to protect a section or the whole software package against external or internal reading. Can be multi-tenant
|
Abnormal situations handling
Ability to detect abnormal situations (both hardware and software) and to take adapted decisions like the removal of secret data
|
Secure Manufacturing
Initial device provisioning in unsecured environment with overproduction control. Potential secured personalization
|
Crypto Engine
Ability to process cryptographic algorithms, as recommended by a security assurance level
|
Application Lifecycle
Define unchangeable incremental states to securely protect application states and assets
|
Fast track your design journey with certified security
STM32Trust relies on several security certification schemes to increase your level of confidence in the security implementations, including:
- Platform Security Assurance (PSA) defined by Arm®
- Security Evaluation Standard for IoT Platforms (SESIP) defined by Global Platform
Videos*
ebv content library/home/products/product-highlights/stmicroelectronics-stm32/stm32trust/ebv - st stm32 - stm32trust static html
EBV - ST STM32 - STM32Trust Static HTML