NXP Semiconductors has introduced its new A71CH Secure Element (SE), a trust anchor, ready-to-use security solution for next-generation IoT devices, such as edge nodes and gateways. Designed to secure peer-to-peer or cloud connections, the chip comes with the required credentials pre-injected for autonomous cloud onboarding and peer-to-peer authentication. The solution is a Root of Trust (RoT) at the silicon level, with security functionalities such as encrypted key storage, key generation and derivation to protect private information and credentials for mutual authentication.
Unique to the chip, is its ‘Plug & Trust” approach supporting easy integration of security and cloud onboarding. It does this using host libraries and a development kit compatible to different NXP microcontrollers (MCU and MPU) platforms such as Kinetis and i.MX. Also, example code and various application notes are available to streamline the design process.
The A71CH provides the following set of key features:
- Protected access to credentials
- Encrypted/authenticated interface to host processor
- Certificate-based TLS set-up (NIST P-256)
- TLS set-up using pre-shared secret (TLS-PSK)
- Connectionless message authentication (HMAC)
- ECC key generation & signature verification
- Symmetric key derivation
- Encrypted vault for product master secrets (key wrapping, derivation, locking)
- Encrypted key injection
NXP Semiconductors | www.nxp.com