News

Secure IC Protects Critical Data on IoT and Industrial Devices

January 30, 2020 by Paul Shepard

Panasonic Corporation has developed a multifunctional secure IC in response to the need for enhanced security measures to protect IoT and industrial devices used in facilities such as factories and warehouses. When installed in such devices, via a simple process, this new secure IC with unique encrypting functions will boost their security. The company will start sample shipments in February 2020.

The use of IoT devices has been growing rapidly in a variety of fields, requiring improved measures against increasingly sophisticated and diverse security attacks. Conventionally, an authentication key is written from outside the IC and retained in the IC. Panasonic's new product, however, generates and retains a unique authentication key inside the IC and deletes it after use, blocking any interception of the key and effectively protecting important data.

Equipped with NFC, a wireless interface function, and a memory (ReRAM) that is highly resistant to radiation, the new multifunctional secure IC is also applicable to devices not connected to the internet and medical devices. The product further secures the safety of the device over its entire life cycle, from manufacture to disposal or reuse, in addition to during use, contributing to achieving safe and secure IoT systems.

Panasonic's new multifunctional secure IC has the following features:

  1. Improving the security resistance of data by generating and deleting a unique authentication key inside the IC each time.
  2. Equipped with NFC, a wireless interface function, and ReRAM that is highly resistant to radiation.
  3. Improving the safety of devices over their entire life cycle through cooperation with trust service providers.

Conventional example

Previously, the authentication key of a device was written from outside the IC to the memory inside the IC. This raised a risk of the authentication key being intercepted, so the customer side was responsible for creating a safe environment. There was also a risk of data in the memory being intercepted or tampered with.

Suitable applications

  • IoT and industrial devices in general (logistics, smart factories, network devices, etc.)
  • Management of medical equipment and pharmaceuticals to be sterilized by radiation

Product features

  1. Improving the security resistance of data by generating and deleting a unique authentication key inside the IC each time

As a unique security function, Panasonic's multifunctional secure IC possesses IC-specific analog information, which is different for each IC. This analog information (IC fingerprint) is unique in the same way as human biological information (fingerprint). The IC fingerprint is analog and therefore cannot be copied.

Resistance to interception and tampering with data in the memory is thereby enhanced because this product generates a unique authentication key from an IC fingerprint and uses the authentication key to encrypt important data in the memory.

This product significantly upgrades security and is resistant to tampering, because it also generates an authentication key from the IC fingerprint when authenticating the device, and deletes the authentication key on completion of the authentication process.

Each ICs fingerprint is different.

  1. Equipped with NFC, a wireless interface function, and ReRAM that is highly resistant to radiation

This product is equipped with NFC for wireless communications, enabling even devices that are not already connected to the internet to get internet connection via smartphones and tablets. This allows for the mutual authentication of devices using the server, preventing impersonation. The use of an energy harvesting function allows smartphones and tablets to read controller IC information and security incident records in the devices and to configure device operation settings via NFC even when the device power is off. This will facilitate system maintenance management and improve usability.

This product is equipped with ReRAM, a non-volatile memory that is highly resistant to radiation, making it also usable for management of medical equipment and pharmaceuticals to be sterilized by radiation.

  1. Improving the safety of devices over their entire life cycle through cooperation with trust service providers.

This product is equipped with a function compatible with secure IoT platforms of trust service providers. Incorporating this product, which possesses a trust anchor, into IoT devices and executing certificate-based authentication, ensures the safety of devices over their entire life cycle, from manufacture to disposal or reuse, helping to achieve safe and secure IoT systems. This also facilitates compliance with the security standards that govern control systems, specified in IEC62443.