To help developers address emerging requirements such as the EU Cyber Resilience Act (CRA), industrial and automotive cybersecurity standards, Microchip Technology has expanded its Trust Platform with the TA101 TrustFLEX secure authentication integrated circuit (IC) and the TA101 TrustMANAGER with keySTREAM® service from Kudelski Labs.
Designed for products subject to CRA legislation as well as developers building software-defined vehicle (SDV) architectures, TA101 Trust Platform devices support multiple deployment models. For companies with an existing cloud infrastructure capable of securely managing cryptographic keys and firmware at scale, the platform integrates factory pre‑configured TrustFLEX secure authentication ICs.
For companies without such infrastructure, the TrustMANAGER platform provides cloud‑based cryptographic key lifecycle management and firmware‑over‑the‑air (FOTA) update services. This integrated approach gives customers a choice in how to address stringent security requirements while significantly reducing implementation complexity.
For industrial applications, the Trust Platform helps support International Electrotechnical Commission (IEC) 62443 standards and CRA compliance with PKI-based authentication, securely authenticated communications, centralized security, lifecycle management and authenticated firmware updates.
Additionally, Microchip’s in-factory or in-field provisioning services help streamline conformity assessments and technical documentation.
The TA101 TrustFLEX (TA101-TFLXTLS) IC is preconfigured at the factory for common security use cases that help enable rapid, hardware-based authentication without designing cryptographic configurations from scratch. This approach is designed to reduce development time, ease documentation efforts and lessen security risks compared to manually configured security ICs. The secure provisioning of keys happens at Microchip’s certified factories following Common Criteria practices.
The TA101 TrustMANAGER (TA101-TMNGTLS) enables remote configurability and management of cryptographic keys throughout the product lifecycle. Integrated with the Kudelski keySTREAM Software-as-a-Service (SaaS) platform, TrustMANAGER supports secure in-field provisioning, monitoring, key revocation, code signing and FOTA updates. In automotive applications, the TA101-TMNGTLS supports software-defined vehicle architectures because it is designed to provide scalable, secure FOTA and key management to help confirm that only authenticated software and commands are accepted by electronic control units (ECUs).
This supports compliance with International Organization for Standardization (ISO)/Society of Automotive Engineering (SAE) 21434 standards and United Nations Economic Commission for Europe (UNECE) WP.29 automotive cybersecurity regulations by providing controls for mitigating cybersecurity risks.
