STM32Trust security framework
STM32Trust offers a robust multi-level strategy to enhance security in new product designs based on our STM32 microcontrollers and microprocessors augmented with STSAFE secure elements.
STM32Trust is a security framework combining our knowledge, ecosystem, and security services. This solution offers developers a complete toolset to protect their design’s valuable assets, such as software IP and data, and to ensure secure connectivity and system integrity.
With a set of 12 security functions offering hardware, software, and design services from ST and third parties, STM32Trust complies with the requirements of the major IoT certification schemes.
STM32Trust overview
![Image of STM32Trust overview](/wcm/connect/ffd0875b-83b6-48fe-89b6-e8babebdb736/1x1.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE-ffd0875b-83b6-48fe-89b6-e8babebdb736-lHyCzDx)
Click to enlarge image
STM32Trust brings 12 security functions & services to align with asset-protection use cases and to provide the right security assurance levels
Secure boot
Ability to ensure the authenticity and integrity of an application that runs inside a device
|
Audit/Log
Keep trace of security events in an unchangeable way
|
Secure Install/Update
Installation or update of firmware with initial checks of integrity and authenticity before programming
|
Identification / Authentication / Attestation
Unique identification of a device and/or software package, and ability to detect its authenticity, from inside the device or externally
|
Secure Storage
Ability to securely store secrets like data or keys (and to access them without them being visible externally)
|
Silicon Device Lifecycle
Control states to securely protect silicon-device assets through a constrained path
|
Isolation
Isolation between trusted and non-trusted parts of an application
|
Software IP Protection
Ability to protect a section or the whole software package against external or internal reading. Can be multi-tenant
|
Abnormal situations handling
Ability to detect abnormal situations (both hardware and software) and to take adapted decisions like the removal of secret data
|
Secure Manufacturing
Initial device provisioning in unsecured environment with overproduction control. Potential secured personalization
|
Crypto Engine
Ability to process cryptographic algorithms, as recommended by a security assurance level
|
Application Lifecycle
Define unchangeable incremental states to securely protect application states and assets
|
Fast track your design journey with certified security
![PSA and SESIP logos](/wcm/connect/ffd0875b-83b6-48fe-89b6-e8babebdb736/1x1.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE-ffd0875b-83b6-48fe-89b6-e8babebdb736-lHyCzDx)
STM32Trust relies on several security certification schemes to increase your level of confidence in the security implementations, including:
- Platform Security Assurance (PSA) defined by Arm®
- Security Evaluation Standard for IoT Platforms (SESIP) defined by Global Platform
Videos*
ebv content library/home/products/product-highlights/stmicroelectronics-stm32/stm32trust/ebv - st stm32 - stm32trust static html
EBV - ST STM32 - STM32Trust Static HTML