Securing the Future of IoT: Introducing SEAL SQ’s VAULTIC 292 Cryptographic Module

The Internet of Things (IoT) has become an integral part of our daily lives, connecting everything from home appliances to industrial sensors.

However, the security of these devices remains a significant concern. Seal SQ, a subsidiary of WISeKey International Holding Ltd, has taken a monumental step in addressing this challenge by launching VaultIC292, a cutting-edge cryptographic module designed to secure IoT devices and sensors.

Elevating IoT Security with VaultIC292

VaultIC292 is not just another security solution; it’s a fortified microcontroller designed to endow IoT devices with a robust and secure identity. This identity is vital for applications such as Smart Home Devices or field sensors, enabling trusted connections to clouds or local networks via the TLS protocol.

Key Features of VaultIC292:

• Cost-Effective Integration: VaultIC292 is designed for seamless integration, emphasizing cost-effectiveness without compromising security.
  • Space saving (U)DFN packages 2mm x 3mm
  • I2C host communication
  • ECC NIST P-256 Altorithm (secp256r1)
• Flexibility and Adaptability: The secure element can be pre-provisioned at various stages, including factory-set, over-the-air, at wafer level, or on-package.
  • As a provider of secure hardware & software solutions for more than 25 years, Seal SQ offers the infrastructure for pre-provisioning in its own factory but also in production at your site
• Compatibility: It supports protocols like MATTER, Wi-SUN, and OPC, facilitating authentication with platforms like Microsoft AZURE or AWS Clouds.
  • Pre-configuration with DAC, PAI certificate, passcodes for successful Matter implementation.
  • Pre-provisioning with private key & X.509 certificates for cloud commissioning
• Lifecycle Management: Seal SQ’s PKI platform, INeS, allows for the generation and management of compliant certificates throughout the device’s lifecycle.
  • The INeS platform is one of Seal SQ’s flexible software solutions. This CMS solution offers a flexible connection to your systems via RESTful APIs & EST and is used for certificate & identity management.
• Tamper Resistant: Built on a CCEAL5+ level Tamper Resistant hardware platform, it ensures optimal efficiency and security.
  • Based on EAL5+ ready hardware, random number generator according to NIST SP800-90A & 90B in hardware, ECDSA according to FIPS 186-4, ECC parameters according to NIST SP 800-186

Potential Market Opportunities and Target Customers

VaultIC292’s innovative approach opens doors to various market opportunities:

• IoT Device Manufacturers: Ensuring trusted and secure identity for smart home devices and sensors in the field through asymmetric crypto algorithms (ECC P256). The standby mode with less than 100µA and only 3-5mA current consumption during CPU intensive calculations enable the use in battery powered devices, also the wide operating voltage range from 5.5V down to 1.62V supports this.
• Cloud Service Providers: Enhancing authentication and trust for devices connecting to platforms like Microsoft AZURE or AWS Clouds. Storage of up to 5 key pairs and 2 complete X.509 certificates guarantees flexible use.
• IoT Developers: Facilitating swift time-to-market and economical project implementation. A standard I2C host interface & user friendly API support the implementation of TLS 1.2 & TLS 1.3 (WolfSSL, MbedTLS) as well as the signing of firmware for secure boot.
• Security-Focused Industries: Catering to industries where high-grade security is paramount, such as critical infrastructures and defense systems. (Tearing Protection for critical data, Temper Attack Detection)
• Home Automation and Industrial Control System Companies: Specializing in areas like home automation systems and industrial control systems (extended operating temperature range from -40 to +105°C).

SEALSQ: Crafting a Secure Tomorrow

SEALSQ continues to reiterate its reputation as a trailblazer in the growing IoT industry. The launch of VaultIC292 marks a pivotal moment in creating inherently secure IoT devices and sensors, embodying the aspiration to pave the way for a more secure digital world. The following illustration shows the system solution consisting of hardware security and software environment (like PKI, secure host communication, …).

Extended Features and Benefits of VaultIC292

IoT Core Objectives for Manufacturers & Operators

• Ensuring Supply Chain Integrity: VaultIC292 plays a crucial role in the supply chain, from chip to device. It provides unique device identity and key management, secure firmware and software delivery, and facilitates the transfer of ownership.
• Securing Data Operations & Enabling Trusted Infrastructure: This includes secure device enrolment, protection of data at rest and in motion, secure updates at the edge, and lifecycle management.
• Need for a Trust Environment with Strong Trust Anchor: VaultIC292 serves as a robust trust anchor, offering hardware trust and tamper resistance (EAL5+ ready hardware).

Creating a Trust Environment and Trust Anchor

• Secure Element: VaultIC 292 offers unique advantages by integrating hardware-based tamper and readout protection. It ensures the separation of secure and insecure application areas within a Trusted Execution Environment (TEE) and thus realizes a very high security level. This by far exceeds the simple software protection of a microcontroller.

Conclusion

The launch of VaultIC292 not only marks a significant advancement in IoT security but also addresses the core needs of manufacturers and operators.

By providing a trust environment with a strong trust anchor, VaultIC292 ensures supply chain integrity, secures data operations, and creates a trusted infrastructure.

These extended features reinforce SEALSQ’s commitment to crafting a secure tomorrow, making the future of IoT not only promising but also inherently secure.

If you want to learn more just get in contact with us directly or use the following for for your request