Due to the rise of in-vehicle network connections like Bluetooth and LTE/5G, today’s vehicles host more vulnerabilities than ever before, driving new cybersecurity regulations and specifications for the automotive market. Helping OEMs and their module suppliers simplify the upgrade of existing designs to meet security requirements for future generations, Microchip Technology Inc. announced its CryptoAutomotive security IC, the TrustAnchor100 (TA100). The cryptographic companion device supports in-vehicle network security solutions such as secure boot, firmware update, and message authentication, including Controller Area Network (CAN) MAC at bus speed.
In order to comply with the new security specifications, automotive designers must rearchitect the vehicle’s electronic control units (ECUs) with secure hardware. Existing solutions in the market include single-chip dual-core hardware security module (HSM) devices, which require OEMs and their module suppliers to re-architect their application software to integrate security. In addition to the effort required for this integration, the risk of security holes introduced in disparate implementations poses significant barriers through this path. Third-party security software can help overcome this barrier in part with increasing development costs.
The TA100 provides an alternative in-vehicle network architecture implementation for secure boot and message authentication — and has already been approved by multiple OEMs around the world as a solution for EVITA Medium and EVITA Full HSM requirements. Its feature set was designed based on a careful review of several prominent OEM cybersecurity specifications to help facilitate a Tier 1’s pursuit of OEM Part Production Approval (PPAP). Additionally, Microchip offers security specifications and Request for Quote (RFQ) review services to assist Tier 1s in developing educated responses, improving their project award success rate. The TA100 removes the challenges associated with secure code development and provisioning by offering pre-programmed cryptographic internal application code provisioned with unique asymmetric key-pairs and associated x.509 certificates — reducing risk, cost, and time to market.
The device is confirmed with high resistance to attack through intensive third-party vulnerability assessments. It is AEC-Q100 Automotive Grade-1 qualified, FIPS 140-2 CMVP Security Level 2 rated and Physical Key Protection Level 3 certified, and it has achieved the highest possible vulnerability assessment rating of Joint Interpretation Library (JIL) High. In addition, the TA100 provides software components like AUTOSAR drivers, MCALs, and Microchip’s CryptoAuthentication library that allow a seamless integration into the industry-standard operating system, AUTOSAR, or customized software stacks for crypto functions.
The TA100 offers AUTOSAR compliant MCAL drivers that can be integrated into an AUTOSAR software stack. A full AUTOSAR reference stack is available, enabling automotive vendors to deploy the latest crypto standards into their automotive systems within standard automotive production environments. MikroBUS compatible socket boards are also available.
The TA100 is available in 8- and 14-pin SOIC packages starting at $1.50 in 10,000-unit quantities.