• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer

Electrical Engineering News and Products

Electronics Engineering Resources, Articles, Forums, Tear Down Videos and Technical Electronics How-To's

  • Products / Components
    • Analog ICs
    • Connectors
    • Microcontrollers
    • Power Electronics
    • Sensors
    • Test and Measurement
    • Wire / Cable
  • Applications
    • Automotive
    • Industrial
    • IoT
    • Medical
    • Telecommunications
    • Wearables
    • Wireless
  • Resources
    • Covid-19
    • DesignFast
    • Ebooks / Tech Tips
    • EE Forums
      • EDABoard.com
      • Electro-Tech-Online.com
    • FAQs
    • 2020 LEAP Awards
    • Oscilloscope Product Finder
    • Podcasts
    • Webinars / Digital Events
    • White Papers
  • Videos
    • Teardown Videos
  • Lee’s Teardowns
    • Teardown Videos
  • Learning Center
  • 5G
  • Women in Engineering

Reference design covers secure OTA firmware updating of IoT devices

March 24, 2021 By Lee Teschler

A fully integrated reference design for secure over-the-air (OTA) firmware updating of IoT devices is secured from the cloud to the device’s code storage memory.

By providing a proven way to implement secure firmware updates on a secure and certified hardware and software, the wonbondWinbond/Nuvoton/Qinglianyun solution reduces the time it takes to develop new IoT devices and helps OEMs get to market faster with products for smart city, smart home, metering, industrial control, and other security-conscious applications.

The reference design is based on the Nuvoton M2351SF IoT Security MCU, a multi-chip module consisting of the M2351 IoT Security microcontroller and Winbond’s W77Q TrustME secure Flash memory IC. The M2351 microcontroller is based on the Arm Cortex-M23 secure processor core with TrustZone technology. The module’s W77Q secure Flash device is connected to the M2351 via an encrypted serial peripheral interface which resists sniffer attacks on data transferred between the two chips.

To provide a trusted execution environment (TEE) for secure OTA firmware updating operations and communications with the cloud, the M2351 runs Qinglianyun’s TinyTEE secure software stack in TrustZone-protected hardware. Using the 32 Mbit secure storage provided by the W77Q, the reference design provides for storage of secure and non-secure firmware and data, authenticated access control to ensure the integrity of firmware and data, and rollback protection.

The TinyTEE software on the M2351 connects to Qinglianyun’s secure cloud service, which provides a full suite of IoT device management capabilities, such as device authentication, secure storage, encryption engine, and true random number generator, comply with Global Platform TEE standard interface.

This system thus provides a secure chain of trust for the provision of OTA firmware updates from the cloud all the way to the W77Q Secure Flash memory, with no vulnerability to remote attack or exposure of private data. The solution provides a comprehensive set of security essentials. The W77Q helps ensure robust, end-to-end security in IoT devices by enabling:
Secure storage
Secure boot and root-of-trust
Authenticated and encrypted data transfer between the Flash device and the host
Secure Execute-in-Place (XiP) of boot and application code
System resilience, supporting the key security functions of protection, detection and recovery

The M2351 microcontroller also offers multiple security capabilities including a secure bootloader, hardware cryptographic accelerators, execute-only memory, and tamper-detection pins.

For more information about the Winbond/Nuvoton/Qinglianyun solution for secure OTA firmware updating, contact your local Winbond sales office or authorized distributor.

You may also like:


  • Tips on designing smart home devices – Part 2

  • Tips on designing smart home devices – Part 1

  • Functional safety for embedded systems – Virtual Roundtable (part 2…

  • Security for embedded systems – Virtual Roundtable (part 1 of…

  • Where is embedded security headed in the IoT?

Filed Under: Applications, Connectivity, Industrial, IoT, Microcontroller Tips, Reference designs, Security Tagged With: nuvoton, qinglianyun, winbond

Primary Sidebar

EE Training Center Classrooms

“ee

“ee

“ee

“ee

“ee

Featured Resources

  • NEW! EE World Online Learning Center
  • CUI Devices – CUI Insights Blog
  • EE Classroom: Power Delivery
  • EE Classroom: Building Automation
  • EE Classroom: Aerospace & Defense
  • EE Classroom: Grid Infrastructure

February 2021 Special Edition: Power Electronics Handbook

RSS Current EDABoard.com discussions

  • CMOS inverter basic questions
  • usb info
  • LR8 linear regulator running off 510V when 480V is abs max?
  • Whirlpool washing machine l1961
  • ESL of ceramic capacitor seems too high, at 8.8uH

RSS Current Electro-Tech-Online.com Discussions

  • Question PS2 slim 90000 components
  • Keep battery hot
  • laptop car charger
  • Sampling an AC signal
  • Tesla coil progress

Oscilloscopes Product Finder

Follow EE World on Twitter

Tweets by @EEWorldOnline

Footer

EE World Online

EE WORLD ONLINE NETWORK

  • DesignFast
  • EDABoard Forums
  • Electro-Tech-Online Forums
  • Microcontroller Tips
  • Analog IC Tips
  • Connector Tips
  • Engineer's Garage
  • Power Electronic Tips
  • Sensor Tips
  • Test and Measurement Tips
  • Wire & Cable Tips
  • 5G Technology World

EE WORLD ONLINE

  • Subscribe to our newsletter
  • Lee's teardown videos
  • Advertise with us
  • Contact us
  • About Us
Follow us on TwitterAdd us on FacebookFollow us on YouTube Add us on Instagram

Copyright © 2021 · WTWH Media LLC and its licensors. All rights reserved.
The material on this site may not be reproduced, distributed, transmitted, cached or otherwise used, except with the prior written permission of WTWH Media.

Privacy Policy