Companies collaborate to optimise the security of next-generation microcontrollers

The demand for high-performance hardware and robust cybersecurity solutions increases as the automotive industry transitions to software-defined vehicles and new E/E architectures. To meet this requirement, Infineon Technologies AG has integrated the ESCRYPT CycurHSM 3.x Automotive Security Software Stack into the AURIX TC4X Cybersecurity Real-time Module (CSRM) in collaboration with ETAS. With this next-generation solution bundle, the companies seek to optimise security levels, performance, and functionality.

“One of the strengths of our AURIX offering is the deep level of integration of our partners’ software solutions,” said Thomas Schneid, senior director of Software, Partnership, and Ecosystem Management at Infineon Technologies. We are therefore delighted to deepen our partnership with ETAS even further to advance the development of software-defined vehicles.”

“We are excited to open a new chapter in our long and successful collaboration with Infineon,” said Rohan Pandit, product manager of Onboard Security at ETAS. “The integration of the latest version of ESCRYPT CycurHSM with the AURIX microcontroller family will enable software-defined vehicles to meet increasing performance requirements while providing robust security.”

The AURIX TC4x family is compliant with the latest ISO/SAE 21434 cybersecurity standard. The security concept removes performance bottlenecks and supports post-quantum cryptography. The controller family includes a CSRM with dedicated memory and a Cybersecurity Satellite (CSS). The CSS provides accelerators for cryptographic services that can be executed in parallel and significantly improve throughput in conjunction with ESCRYPT CycurHSM 3.x.

Virtualisation support also facilitates the configuration of multiple virtual instances so that several applications can be run in parallel. ESCRYPT CycurHSM 3.x uses this feature to allow flexible boot-up sequences and independent dynamic updates for each virtual instance. Access control can be configured granularly, and individual ASIL levels can be assigned to each virtual instance, facilitating different security applications.

The first device of the new Infineon TC4X series is already secured with ESCRYPT CycurHSM 3.x. The hardware compatibility of CSRM and CSS allows a smooth porting of ESCRYPT CycurHSM 3.x to other derivatives of the TC4X family, depending on market needs and device availability.