STMicroelectronics and Kudelski IoT have developed joint security software for ST’s latest microcontrollers.
Kudelski IoT keySTREAM Trust Agent is integrated into ST’s latest STM32H5 microcontroller (MCU) enabling all the features required to comply with most common industry security standards, including NIST, FIPS, PSA and SESIP Level 3 or higher.
These include in-field personalization of device credentials and zero-touch cloud onboarding to any cloud, credential renewal and revocation, and attestation. This is done by enabling the remote provisioning of device credentials instead of requiring them to be provisioned in the factory and keys passed through the value chain. By simplifying these steps, the integration streamlines operational processes and reduces human error.
- Blast radius – Francois Baldassari, CEO of Memfault
- Secure Manager on STM32H5 simplifies embedded designs on ST
The keySTREAM Trust Agent uses the Secure Manager introduced on the STM32H5 to create new credentials and manage them throughout their entire lifecycle. Developers can use these functions via simple APIs after downloading and implementing an SDK available from ST.
keySTREAM then creates new credentials for on-demand provisioning and onboarding of the device to any cloud or cloud service, including services like Matter, MQTT, DLMS, FOTA servers, and many others. Having the ability to do this provides more flexibility to device manufacturers, because they can flexibly modify and expand the capabilities of a given device over time.
“The growing emphasis on security and customers’ need to deliver certified secure, high-performance applications quickly, encouraged us to work closely with Kudelski IoT on this joint solution,” said Ricardo De Sa Earp, Executive Vice President General-Purpose Microcontroller Sub-Group, Microcontrollers and Digital ICs Group at STMicroelectronics. “Our Secure Manager in combination with the keySTREAM system keeps users, assets, and data secure by enhancing and simplifying the addition of valuable security services to customer developments while easing their certifications.”
“As the volumes of IoT device deployments continue to increase and security regulations and standards become more demanding, companies need more flexible and effective ways to establish and maintain security,” said Frédéric Thomas, CTO of Kudelski IoT. “Our solution with ST makes the current device provisioning model obsolete and gives our customers what they need to launch and maintain secure devices while actually increasing their agility and decreasing time to market.”