tops micro

Digital identity provisioning in production

 

A fully focused and cost-effective solution

  • Address the identities provisioning for connected devices at the manufacturing level
  • Target connected devices based on programmable components (MPU, MCU, FPGA…)

 OVERVIEW                                    

Many industry standards  and regulations now require the provisioning of a first and strong digital identity into an electronic device during manufacturing. These include the Cyber Resilient Act (CRA) in Europe, Matter for Smart Home, ISO15118-2/20 for EV-charging, and more.

Assigning each device with an identity means the provisioning of a unique digital certificate per device. Today’s solutions for certificate provisioning in production are time consuming, expensive  and difficult to scale. Trusted Objects provides «tops micro», a solution that enhances security, reduces complexity and lowers cost by fully automating the provisioning of the first digital identity.

 

 tops micro BENEFITS 

Increase security

Reduce complexity and cost

Simplify certificates and keys provisioning process

Remove room for human errors

Ensure trust in the manufacturing operations

Automate and scale

Fully automate the process of assigning an identity per device

Fit with volume increase in production

Flexibility 

Can be used with any device or chipset

Easily integrated with most of the programming equipment or test benches

 

 Standard integration architecture 

 

 Product features and services 

Secure Computer

Portable industrial computer
128 GB SSD
TPM 2.0 / HSM
Secure OS and SW update
Secure connection  to the device programmer
Application server with User interface (UI)

Resources

Credits for a preset number of 10K certificates
to be  provisioned
Full set of documentation

 

Services

  • Secure generation of 1 certificate per device:
    asymmetric key generation (RSA, ECC)
  • Management of a PKI tree:
    internal CA, cross-signed CA 
  • Secure generation of 1 AES key per device:
    Master key injection, AES derivated key
  • Unique Serial Number generation
  • Secure provisioning:
    serial number, certificates and keys injection into the programmable component
  • Secure storage:
    of all certificates and keys in the programming facility
  • Overproduction control:
    production batches signed reports

 

 Pay-per-use business model 

  • Initial fee (incl. H/W): 1 000 € 
  • 1 pack of 10K provisioning credits: 2 000 €

 

 

 

Evaluate