Winbond Introducing TrustME Secure Flash Memory Implementing TCG-DICE Architecture

Winbond Electronics Corporation announced an expansion of its TrustMESecure flash products portfolio based on the Trusted Computing Group (TCG) Device Identifier Composition Engine (DICE) Architecture specification.

TrustMESecure flash

As the industry’s first Common Criteria EAL5+ certified secure flash, and with the addition of support for the TCG DICE, the TrustME W75F secure flash provides designers with secure memory solution for IoT, mobile, artificial intelligence, and other demanding applications that call for a secure root of trust, privacy, authentication, code and data confidentiality.

The proliferation of Internet-connected clients in consumer and industrial applications increases privacy and security challenges, which can limit the growth of IoT deployments. While the innovation and application of connected things will continue, establishing root of trust and data confidentiality are some of the biggest concerns designers need to consider when developing new connected devices.

TCG DICE Architectures defines new security and privacy technologies applicable to systems and components. The goal is to provide new approaches to enhancing security and privacy with minimal silicon requirements.

“TCG’s DICE offers an effective root of trust for IoT and embedded systems that have constraints in footprint, cost and power, while providing key security benefits,” said Dennis Mattoon, chair, TCG DICE architecture group, and senior software development engineer, Microsoft Corp. “The implementation of DICE by Winbond gives designers an option for including strong trust and security.“

“In an increasingly security aware world, we see significant market demand for the robust hardware root of trust which is mandatory for broad and steady adoption of IoT solutions and infrastructures. Winbond TrustME Secure Flash strengthens the robustness of root of trust by securing code and data“, said Hung-Wei Chen, MD, Winbond. “We look forward to continuing our support for secure memory solutions with our technology and expertise to meet the growing demand for secure and flexible systems in the era of IoT“.

The company’s expansion of TrustME W75F secure flash with the TCG DICE enables secure execute-in-place (XIP) to ensure inherent root of trust, create mutual authentication with IoT cloud services and store securely various keys, credentials and certificates. The EAL5+ certified W75F Secure Flash provides protection against physical hacking attacks such as rollback, replay, man-in-the-middle, power analysis and eavesdropping. Compared to conventional flash devices storing encrypted software, the secure XIP functionality of TrustME W75F secure flash eliminates the need for software shadowing and decrypting to additional RAM thus achieves higher system level performance.

TrustME W75F secure flash feature:

• Security

  • • Common Criteria EAL5+ secure certification

    • Supports the TCG requirements for a Device Identifier Composition Engine (DICE)

    • Individual device key for binding with master

    • Bus encryption with a strong, one-time key

    • Data integrity check

    • Protection against side-channel attacks (SCA)

    • Strong tamper-resistance features

    • Secure execution in place (S-XIP) operation

• Low power, wide temperature range

• • • Single 1.65 to 1.95V supply

    • 2mA active current, <1_A Power-down

    • -25°C to +85°C operating range

To meet the growing demand for high-volume embedded solutions, Winbond TrustME memories are manufactured in the company’s wholly-owned and secured 12-inch wafer fabrication facility in Taichung, Taiwan.

The first product in the family, the W75F32 at 32Mb density, is in production and available for samples.

Winbond demonstrated TrustME W75F Secure Flash at Arm TechCon, October 24-26, 2017, in Santa Clara,CA.