MCUs bring post-quantum cryptography to embedded electronics
To assist system architects in meeting evolving security demands and addressing post-quantum cybersecurity challenges, Microchip Technology has developed its MEC175xB MCUs with immutable embedded post-quantum cryptography support.
Driven by advancements in cryptographic research and the need for stronger security measures, the National Security Agency (NSA) introduced the Commercial National Security Algorithm Suite 2.0 (CNSA 2.0) to establish a set of quantum-resistant cryptographic standards. The NSA is now urging data center and computing markets to become post-quantum ready within the next two years. In response, the MEC175xB MCUs, serving as a standalone controller, adopt a modular approach that enables developers to efficiently implement post-quantum cryptography, thereby ensuring long-term data protection without compromising existing functionality.
These low-power controllers are designed with National Institute of Standards and Technology (NIST) approved post-quantum cryptographic algorithms, configurable secure boot solutions and an advanced Enhanced Serial Peripheral Interface (eSPI).
“As the significance of potential, future attacks on cryptography using quantum computing is understood more widely, the cybersecurity landscape is already undergoing substantial transformations,” said Nuri Dagdeviren, corporate vice president of Microchip’s security products business unit. “Our MEC175xB controllers, featuring quantum-resistant cryptography implemented in immutable hardware with efficient power management, are designed to equip our customers with the tools they need to navigate increasingly complex digital security requirements.”
MEC175xB controllers incorporate CNSA 2.0-compliant Module-Lattice-Based Digital Signature Algorithms (ML-DSA), Merkle stateful hash-based Leighton-Micali Signature (LMS) verification and Module-Lattice-Based Key-Encapsulation Mechanism (ML-KEM) standardised by NIST. These new algorithms with quantum attack resistance are implemented in immutable hardware to block attack paths possible on software implementations.
The controllers feature secure boot and secure firmware update schemes, configurable to utilise either CNSA 1.0 or 2.0, or a hybrid-based signature verification. Attestation capabilities employ ML-DSA for signing and key generation to enhance system integrity and authenticity.
At its core is an Arm Cortex-M4F processor with a Memory Protection Unit (MPU) operating at 96 MHz, delivering high performance for complex computations and real-time applications. The controllers include 480 KB of SRAM, I3C® host and client interfaces and an optional USB 2.0 Full-Speed interface for versatile connectivity.
MEC175xB controllers are compatible with the MPLAB® X Integrated Development Environment (IDE) and are supported by example projects, such as blinking LEDs, which are available in the Secure Document Extranet (SDE) and external tools such as Zephyr®. The controllers are also supported by the MEC1753-240 MECC (EV48H83A) development board.
If you enjoyed this article, you will like the following ones: don't miss them by subscribing to :
