SmartCard America Blog

Security & Smart Card Solutions by infineon

Infineon`s security solutions serve applications ranging from smart cards to new, emerging use cases. Infieon core competencies include tailor-made security, contactless technology as well as embedded control.

  • infineon offer industry’s broadest portfolio of security solutions including hardware, software and services.
  • infineon provide leading security solutions for smart card applications like SIM cards for mobile communication, payment, government identification and transport ticketing.

Infineon’s leadership extends to embedded and mobile security applications as well as internet of things security applications like smart home, connected car, industrial automation and information and communication technology.

The OPTIGA™ TPM SLM 9670 is a member of the OPTIGA™ TPM family. It addresses the requirements of industrial and other demanding applications where an extended temperature range, an extended lifetime and industrial-grade quality are key.

Pushing beyond the qualifications processes performed for standard TPMs, the OPTIGA™ TPM SLM 9670 is qualified according to the industrial JEDEC JESD47 standard to enable the requisite performance under demanding environmental conditions.

OPTIGA™ TPM SLM 9670 Industrial Grade TPM

OPTIGA™ TPM SLM 9670 offers high levels of flexibility to address innovative use cases of Smart Factories and Industry 4.0 that call for robust security:

  • Strong digital device ID and device authentication
  • Secured communication for data confidentiality and IP protection
  • Integrity protection of devices and software  incl. software updates

OPTIGA™ TPM SLM 9670 offers high levels of flexibility to support innovative smart factory and Industry 4.0 use cases that call for robust security based on:

  • Strong digital device IDs and device authentication
  • Secured communication for data confidentiality and IP protection
  • Integrity protection of devices and software , software updates included

SLM 9670 is equipped with a variety of functions to secure industrial devices and systems. These include:

  • Key storage and management
  • Identification and authentication
  • Signature generation and verification
  • Software and firmware integrity attestation
  • Secured logging and secured time

OPTIGA™ TPM SLM 9670 is fully compliant with the Trusted Platform Module (TPM) standards issued by the Trusted Computing Group (TCG). It is listed within the TCG Certified Products List based on functional and security evaluations performed by an independent third party according to Common Criteria EAL4+. In addition, it is compliant with FIPS 140-2 Level 2 (Physical Security Level 3).

Based on the open, vendor-neutral global TPM standard created by TCG, the OPTIGA™ TPM family is a widely used and proven solution supported by a far-reaching ecosystem. Major rich operating systems support OPTIGA™ TPM, offering plug-and-play usability. Additionally, a wide selection of software offerings, including libraries and applications, is available from open source projects and leading commercial vendors – also through the Infineon Security Partner Network (ISPN).

  • Standardized security chip compliant with TCG TPM 2.0 standard
  • Secured storage for critical data and secrets
  • Advanced protection mechanisms against physical and logical attacks
  • Support of cryptographic algorithms RSA-1028, RSA-2048, ECC NIST P256, ECC BN256, SHA-1, SHA-256
  • temp. range -40°C to 105°C
  • lifetime of 20 years
  • JEDEC JESD47 industrial qualification
  • Independently security evaluated and certified

  • Industrial PCs
  • Servers
  • Programmable Logic Controllers (PLC)
  • Industrial Network Infrastructure & Equipment Including
    • Gateways
    • Routers
    • Wireless Access Points
    • Switches

Security Features

Access to SLE 66R35x is only allowed after a three-pass authentication. For SLE 66R35E7 the serial number is unique for each card and cannot be changed. Each data transmission is enciphered. Protection from misuse is done by configurable access conditions that are protected by secret keys used for memory operations such as read or write.

  •  SLE 66R35I: 4-byte, fixed number, non unique IDentifier (FNUID)
  • SLE 66R35R 4-byte fixed reused IDentifier (r-ID)
  • SLE 66R35E7 7-byte Unique IDentifier (UID)
  • SLJ 52G Java Card™ ID platform on SLE 78

Data sheet SLM 9670 2.0 Rev1.0 2019-04-08

Source: infineon