Featuring Infineon's OPTIGA™ TPM and OPTIGA™ Trust M secure chips, certified with Common Criteria EAL6+. Equipped with independent microprocessors and storage areas, these chips achieve physical isolation from the device's terminal operating system and application software. With high security, their core functions such as secure boot, access, and storage effectively resist hacker attacks.
Utilizing Physically Unclonable Function (PUF) technology at its core, each chip gains a unique identity, enhancing the security of cryptographic keys. Implementing PUF technology in hardware key protection ensures that key generation and storage occur within the device, effectively preventing potential attacks and key leakage.
Utilizing the device certificate management system (Certification Authority) to fulfill the certificate loading requirements for IoT devices before leaving the factory. With unique device IDs and certificates, it ensures the legitimacy of device deployment.
Offering device firmware integrity check, meeting Secure Boot requirements. During device startup, it automatically verifies if the firmware has been tampered with. Only upon successful verification does the device proceed to boot, enhancing overall security and reliability.
Providing Code Signing services, software developers can use code signing certificates to digitally sign programs, executables, firmware, etc. Users can verify the authenticity (source) and integrity of the code, preventing tampering.
Through the integration of security components and application systems, developers can invoke the Key Management System for data signing, verification, and encryption/decryption.
Compliant with international standards including PKCS7 and W3C XML digital signatures, and offers an optional end-to-end encryption (E2EE) module.