02-07-2025 | Microchip Technology | Semiconductors
International cybersecurity regulations continue to adapt to fulfil the evolving threat landscape. One major focus is on outdated firmware in IoT devices, which can present significant security vulnerabilities. To address these challenges, Microchip Technology is enhancing its TrustMANAGER platform to include secure code signing, FOTA update delivery, and remote management of firmware images, cryptographic keys, and digital certificates. These advancements support compliance with the European CRA, which mandates strong cybersecurity measures for digital products sold in the EU. Aligned with standards such as the ETSI EN 303 645 baseline requirements for cybersecurity in consumer IoT and the ISA/IEC 62443 security standards for industrial automation and control systems, the CRA sets a precedent that is expected to influence regulations worldwide.
The company's ECC608 TrustMANAGER leverages Kudelski IoT's keySTREAM SaaS to deliver a secure authentication IC designed to store, protect, and manage cryptographic keys and certificates. With the addition of FOTA services, the platform enables customers to securely deploy real-time firmware updates, remotely patch vulnerabilities, and comply with cybersecurity regulations.
"As evolving cybersecurity regulations require connected device manufacturers to prioritise the implementation of mechanisms for secure firmware updates, lifecycle credential management and effective fleet deployment," said Nuri Dagdeviren, corporate vice president of Microchip's security products business unit. "The addition of FOTA services to Microchip's TrustMANAGER platform offers a scalable solution that removes the need for manual and expensive static infrastructure security updates. FOTA updates allow customers to save resources while fulfilling compliance requirements and helping to future-proof their products against emerging threats and evolving regulations."
Further enhancing cybersecurity compliance, the Microchip WINCS02PC Wi-Fi network controller module used in the TrustMANAGER development kit is now certified against the Radio Equipment Directive (RED) for secure and reliable cloud connectivity. RED establishes strict standards for radio devices in the EU, focusing on network security, data protection and fraud prevention. Beginning August 1, 2025, all wireless devices sold in the EU market must adhere to RED cybersecurity provisions.
By incorporating these additional services, TrustMANAGER—governed by keySTREAM—addresses key challenges in IoT security, regulatory compliance, device lifecycle management, and fleet management. This solution is designed to serve IoT device manufacturers and industrial automation providers. Visit the website to learn more about Microchip's Trust Platform.
The ECC608 TrustMANAGER is compatible with the MPLAB X Integrated Development Environment (IDE) and supported by Microchip's CryptoAuth PRO development board (EV89U05A) and the CryptoAuthLib software library. The Trust Platform Design Suite (TPDS) includes a use case example with onboarding educational steps and a firmware code example that enables the keySTREAM service to run on AWS with the ECC608 secure element, utilising a 32-bit Arm Cortex-M4-based PIC32CX SG41MCU and a WINCS02PC Wi-Fi module.
