STM Migrates TCG 1.2 Trusted Platform Module to 0.15-Micron Process Technology

Embedded in a computer system motherboard, the TPM provides secure storage for keys, passwords and digital certificates, to enable platform validation, core root of trust, and management of user credentials. The TPM can be used to verify that hardware is unchanged and that the BIOS has not been compromised. ST has shipped several million TPM devices to leading desktop and laptop computer manufacturers which have deployed the devices since the beginning of 2006. The introduction of this new device confirms ST’s leading position and ongoing commitment to Trusted Computing technology.

Conforming to the most up-to-date version of the TCG TPM specification, version 1.2, the ST19NP18-TPM also supports a highly secure Field Upgrade capability, to enable upgrades to future TCG specifications; to implement enhanced security countermeasures based on new security policies; and to react to newly-identified security threats. The upgrade mechanism takes full advantage of the product’s hardware security features and a Public Key Infrastructure.

Trusted capabilities, based on the TCG specifications, are being implemented in the majority of new PC platforms, with ST’s TPMs being used by leading PC manufacturers, as well as by major motherboard makers and PC OEMs. The ST19NP18 TPM has tested successfully with the native device driver in Microsoft’s forthcoming Windows Vista operating system, and forms a hardware basis for Vista’s new BitLocker Drive Encryption™ security feature.

The TPM is supported by a complete turnkey TCG software package for PC manufacturers and OEMs, thanks to third-party agreements. The chip includes the Core TCG Software Stack (CTSS) licensed from NTRU Cryptosystems Inc., which provides essential core interface and security services framework for any application that relies on the TPM; and the Embassy® Security Center (ESC) and Cryptographic Services Provider (CSP) from Wave Systems Corp., which are powerful TPM management and cryptographic support utilities for PC applications.

The Trusted Computing Group (TCG) is a broad alliance of major hardware and software companies working to create more secure computing environments through the use of secure hardware building blocks and cross-platform software interfaces. The new device is backward compatible with the earlier TCG 1.1b specification.

The ST19NP18 is available in the tiny 4.4mm wide TSSOP28 package; budgetary pricing is in the region of $3.00. Samples are available now, with volume production planned for early Q1 2007.

The Trusted Computing Group (TCG) is a not-for-profit organization – of which ST is one of around 140 members – which exists to develop and promote open standards for hardware-enabled trusted computing and security technologies, including hardware building blocks and software interfaces, across multiple platforms, peripherals and devices. Its primary goal is to help users protect their information assets such as data, passwords and keys from compromise due to software attack and physical theft.

The Group was formed as a successor to the Trusted Computing Platform Alliance (TCPA), which was founded in 1999 by Compaq, HP, IBM, Intel and Microsoft. TCG has adopted the existing TCPA specifications, including the Main (TPM 1.1) specification, and PC Specific Implementation specification. A TSS (TCG Software Stack) specification was announced on September 15, 2003, and the TPM 1.2 specification on November 5, 2003. Work groups have been formed for server, storage, and mobile phone implementation specifications.