Leading-edge security solutions from Microchip

Security for Low-Power RTOS and Linux® Edge Applications

Microchip’s MPUs are designed with security as a key feature enabling the development of secure business applications. Built on a strong foundation of security that safeguards confidentiality, integrity, and authenticity, the company delivers trusted hardware that helps protect the intellectual property and brand value of businesses. The company has established itself as a global leader in the Point-of-Sale (POS) terminals, secure payment, access control, and communications sectors thanks to its track record of delivering secure MPUs for over 20 years. Microchip’s MPUs support all security-related functionalities needed to speed the deployment of secure applications to market cost-effectively.

Key Differentiators

• Secure factory programming solution
• Secure boot
• DPA countermeasures
• Built-in tamper detectors
• Anti-tamper features (active die shield)
• True random number generator
• Dual Physically Unclonable Functions (PUFs)
• Side channel-resistant crypto accelerators

Arm® Cortex®-A5 Series of Secure MPUs

SAMA5D2 microprocessors (MPUs) offer a wide range of security capabilities to safeguard systems, from basic security implementations up to a segmented processing element known as a secure enclave. Microchip simplifies the deployment of solutions with the right security features, be it secure boot for IP protection or secure storage, communications, and remote firmware updates to safely and securely manage the product lifecycle.

ATSAMA5D27-SOM1 – MPLAB Harmony 3

• Arm® Cortex®-A5 based SAMA5D2 MPU
• 1 Gb (128 MB) DDR2 DRAM
• On-board power management unit
• Single 3.3V supply
• Pre-programmed EUI-48™ MAC address
• 40 × 38 mm module, 0.8 mm pitch

ATSAMA5D27-WLSOM1

• Arm® Cortex®-A5 based SAMA5D2 MPU
• 2 Gb (256 MB) LDDR2 DRAM
• MCP16502 PMIC
• WILCC3000 Wi-Fi®/BLE module
• 64Mb QSPI w/MAC pre-programmed EUI-48™ MAC address
• Pre-provisioned ECC608 secure element
• 0.8 x 40.8 mm module, 0.8 mm pitch

System in Package (SiP) w/Integrated DRAM Add Another Level of Security

Microchip’s MPU SiPs integrate SDRAM, DDR2, or LPDDR2 memory into a single package removing high-speed memory interface constraints from a Printed Circuit Board (PCB) and allowing them to be placed down onto a 4-layer PCB, thus lowering overall system costs. In addition, the higher level of system integration makes the SiPs particularly well-suited for space-constrained applications. SiP products also add another level of security by eliminating external memory access during execution.

SAMA5D2 Series System in Package (SiP)

ATSAMA5D27C-LD2G

• Arm® Cortex®-A5 based SAMA5D2 MPU
• 2 Gb (256 MB) LDDR2, 32-bit data bus
• Peripheral touch controller
• Embedded audio subsystem
• Simple power management scheme
• Ultra-low power consumption
  • <200ua retention="" mode="" w/fast="">
  • 5uA backup mode
• Extensive development ecosystem
  • Free Mainline Linux distributions
  • MPLAB X IDE
  • MPLAB Harmony 3

ATSAMA5D27C-D1G

• Arm® Cortex®-A5 based SAMA5D2 MPU
• 1 Gb (128 MB) DDR2, 16-bit data bus
• Peripheral touch controller
• Embedded audio subsystem
• Simple power management scheme
• Ultra-low power consumption
  • <200ua retention="" mode="" w/fast="">
  • 5uA backup mode
• Extensive development ecosystem
  • Free Mainline Linux distributions
  • MPLAB X IDE
  • MPLAB Harmony 3

ATSAMA5D27-SOM1

• RSA up to 2k
• ECC up to P384
• SHA256
• AES-128
• Firmware update
• NIST CMVP
• Common criteria JIL high

ATSAMA5D27-WLSOM1

• SOI8 or SOI14 socket board compatible with micro pinout

MCUs with Integrated Security

Microchip’s 32-bit microcontrollers (MCUs) offer some of the most comprehensive and scalable security options available in the market today. They are supported by a comprehensive ecosystem of hardware, software, tools, and functions to make it easy to implement effective protection for your embedded application.

Hardware

Security begins with hardware. The 32-bit MCU security portfolio has integrated hardware-based security features. Hardware-based security is faster, has higher performance, and is more secure than software-only solutions.

Tools and Software

Save time by jump-starting your design process with MPLAB® Harmony, an award-winning embedded software framework for MIPS® and Arm® Cortex®-M based 32-bit MCUs. Also provided are comprehensive cryptographic/security software and customized provisioning support across development platforms.

PIC32CM LS60/PIC32CM LS00

Industry-Leading Security in its performance class

• Industry’s first Arm® Cortex®-M23-based MCU with a robust secure subsystem and Arm® TrustZone® technology integrated into a single package
• Trust Platform key provisioning services (Optional)
• Support for multiple security functions including secure boot, secure key storage, secure firmware upgrade, hardware isolation, secure IO, IP protection, and tamper protection using asymmetric and symmetric key cryptography
• Protection against a wide class of known physical and remote attacks

Robust Security

PIC32CM LS60 integrates Common Criteria Joint Interpretation Library (JIL) high-rated Trust Platform ECC608 secure element with Arm® TrustZone® technology to help protect devices from both physical and remote attacks. This MCU includes these security features:

• Secure boot
• Secure key storage
• Arm® TrustZone® technology
• True Random Number Generator (TRNG)
• Asymmetric key cryptography based on ECC and ECDSA
• Symmetric key cryptography based on AES and GCM
• Customizable certificate storage slots
• DICE security standard
• Fully integrated with Trust Platform Key Provisioning Solutions

SAM D5x/E5x

Mid-Performance MCU with Highly Integrated Security

SAM D5XE5x MCUs

The SAM/E5x series features a 32-bit Arm® Cortex®-M4 processor with FPU running at up to 120 MHz, up to 1 MB of dual-panel Flash with ECC, and up to 256 KB of SRAM with ECC. It also has a 10/100 Ethernet MAC and two CAN FD ports for creating industrial automation, automotive applications, and general-purpose applications that require wired connectivity. This series offers excellent features with class-leading power performance and integrated hardware security, making it an ideal choice for low-power and secure connected applications.

Key Features

• Arm® Cortex®-M4F core running at 120 MHz with single-precision FPU
• Internal memory architecture with user-configurable Tightly Coupled Memory (TCM), system memory, memory protection unit, and 4 KB combined I-cache and D-cache
• Integrated security including symmetric (AES) and asymmetric (ECC) encryption, Public Key Exchange (PUKCC) support, TRNG and SHA-based memory integrity checker

CryptoAuthentication™ Security Devices

In a trusted embedded system, the root of trust is protected in a secure environment. As the critical foundation for securing an application, this concept of trust relies on using key-based authentication to validate transactions in systems. If a key is spoofed, your system’s transactions can be controlled by unauthorized or malicious users. To protect your embedded system and secure authentication keys against this type of threat, it is critical that you correctly implement trust in your embedded system right from the start.

Key Differentiators

• Microcontroller agnostic with CryptoAuthLib
• Easy onboarding with Trust Platform Design Suite
• Available from as low as 10 units MoQ
• Cost effective common criteria JIL high rated secure key storage

CryptoAutomotive™ Security Devices

The TrustAnchor100 (TA100) CryptoAutomotive™ Security IC provides a way for you to implement security into existing systems without requiring costly redesigns. The TrustAnchor100 provides external Hardware Security Module (HSM) support for secure boot, CAN message authentication, Electric Vehicle (EV) battery authentication, Transport Layer Security (TLS), Wireless Power Consortium (WPC) 1.3 Qi® authentication, High-Bandwidth Digital Content Protection (HDCP), and more.

CryptoAuthentication™ devices offer hardware-based secure storage to effectively keep secret keys hidden from unauthorized users. These small, very-low-power devices work with any microcontroller (MCU) or microprocessor (MPU) to provide flexible solutions for securing Internet of Things (IoT) nodes used in home automation, medical devices, wearables, and many other applications. They can also be used to protect the authenticity of consumables and accessories, ensuring that only legitimate ones work with your product and preserving your revenue stream.

The optimized architecture of CryptoAuthentication™ ICs is composed of hardware-based cryptographic accelerators to significantly reduce execution time and power consumption. A high-quality random number generator and EEPROM-based secure key storage are also embedded inside these devices. To provide extra security, they also come with physical anti-tampering and side-channel attack protections to block access to embedded system credentials.

The Trust Platform is a family of pre-provisioned, pre-configured, or fully customizable secure authentication ICs. Credentials are generated inside each secure element’s boundary by leveraging Hardware Secure Modules (HSMs) that are installed in Microchip’s factories. The Trust Platform offers three tiers of secure elements — Trust&GO, TrustFLEX, and TrustCUSTOM — to provide you with the options and flexibility to meet the requirements of your company’s security model.

ATECC608B Trust&GO

• Pre-configured and pre-provisioned
• ECC P256, AES128, SHA256

DM320118 Trust Platform

• Development Board

Applications

• IoT Baby Monitor: child sensitive product with security requirement
• Automotive ECU in need of secure boot, message authentication, V2X, and V2V

Featured Products

dsPIC33C

dsPIC33CK512MPT608

dsPIC33C DSCs

ATECC608