Our provisioning service sets-up the whole secure provisioning flow: from the wafer at the manufacturing plant to the chip integrated in the final product at the ODM. The Root of Trust is securely established and security is maintained to the final product in the end users hands, key material is securely handled whether in the device or within our HSM at our secure site.
We liaise with our customer’s OSAT manufacturing partner to set up a completely secure provisioning flow, to securely configure their SoC with the necessary secrets and keys for their specific application.
Using a single Stock Keeping Unit (SKU) streamlines inventory management and operations while being more cost-effective. It represents a robust solution that increases the security level of device provisioning.
We provide the highest security protection levels to our customers with our HSMs at our EAL6+ audited and certified MSSR site, in France. We guarantee the safety, authenticity, and integrity of their data.
We ensure the smooth operation of the testing and provisioning of the Secure Enclave at the OSAT's facility.
We manage 3rd party key material and secrets from secure software vendors, assuring security and offering flexibility.
We can enable key diversity, applying security policies and limiting security risks, including any danger posed by potential security breaches
Secure Provisioning Process
How It Works
The provisioning service provides the following:
- Key generation, diversification, and management
- Device IDs, custom data, and production report management
- HSM infrastructure set-up at our customer OSAT manufacturing partner’s facility
- HSM configuration for interfacing with production equipment, enabling wafer-level testing and provisioning of the Secure Enclave
- Third-party software vendor key management to protect and enable secure, authenticated loading of the software to the Secure Enclave at the OEM/ODM
High-End Pre-Certified Secure Enclave, IP and Services for IC Design and Production
SECURE ENCLAVE IP
Our TESIC Secure Enclave IP portfolio ensures security with proven resistance to physical and logical attacks. TESIC products include programmable and customizable solutions that enable product designers to seamlessly integrate security solutions that provide the most efficient power, size, and performance.
CERTIFICATION SERVICES
We guarantee that any SOC that integrates our TESIC Secure Enclave solution will obtain the appropriate security certification from recognized external evaluation laboratories (SESIP, FIPs, PSA Level 3, and Common Criteria). We can provide a comprehensive service to manage the certification process; from liaising with your chosen laboratory, and preparing the required extensive documentation package, to handling the day-to-day project management.
SECURITY & CRYPTO IPs
State-of-the-art secure hardware and software, certified IPs, such as Secure Boot, TRNG, SHA-2, SHA-3, PSA Crypto, PQC, AES, ECC, RSA, etc. Our commitment to security begins with an API-first approach, ensuring a robust foundation for seamless, protected interactions.