We detect you are using an unsupported browser. For the best experience, please visit the site using Chrome, Firefox, Safari, or Edge. X
Maximize Your Experience: Reap the Personalized Advantages by Completing Your Profile to Its Fullest! Update Here
Stay in the loop with the latest from Microchip! Update your profile while you are at it. Update Here
Complete your profile to access more resources.Update Here!
Item Qty
Your cart is empty.

TrustMANAGER

Manage the Security of Connected Devices with TrustMANAGER

Our ECC608 TrustMANAGER device helps you manage the trust of connected devices in an IoT network. Combined with the Kudelski IoT keySTREAM™ SaaS, TrustMANAGER sets up a self-serve Public Key Infrastructure (PKI) that provisions your devices while they are connected in the field to automatically activate them in your account.

TrustMANAGER also enables the bulk upload of credentials with one click and only charges for connected devices in a fleet. Once your IoT device is connected, the keySTREAM SaaS will remotely provision various cryptographic credentials and dynamically manage the security lifecycle of your product from deployment to end of life.

The combination of TrustMANAGER and keySTREAM creates a powerful force in end-to-end IoT security. Redefine key and certificate management with the ECC608 TrustMANAGER device, the first security IC in the TrustMANAGER series. 

Create keySTREAM Account
Learn More About ECC608-TMNGTLS

TrustMANAGER Device and keySTREAM Services

Custom PKI Setup

  • Root Certificate Authority (CA) creation
  • Self-service PKI
  • Protection with IT-grade Hardware Security Modules (HSMs)
  • Kudelski HSM with 99.99% SLA
  • Ability to set up in minutes
  • Cost-effective managed PKI

Automated Device Onboarding

  • Bulk upload of certificates with one click
  • Take ownership with in-field provisioning 

Certificate Management 

  • Expiration date
  • Rotation
  • Revocation
  • Renewal

Code Signing

  • ECC-P256 signature
  • Two signer key options:
    • Create and protect signing key in keySTREAM HSM
    • Bring your own signing key
  • In-field provisioning of verification public key

Ready to Get Started with TrustMANAGER?

To begin prototyping with the development kit, use the TrustMANAGER examples and documentation within the Trust Platform Design Suite software, available for Windows® and macOS® operating systems. Then, open your keySTREAM account with Kudelski IoT.

Download Trust Platform Design Suite
Buy Kit

Benefits of Using a TrustMANAGER Device

  • Set up your IT-grade custom PKI using a proper HSM with no expertise in minutes
  • Protect your root certificate and associated private key in keySTREAM
  • Reduce onboarding time and leverage the automation and scale of keySTREAM to claim your devices
  • Remove the need for customization during manufacturing with in-field provisioning, reducing the risk of mishandled keys
  • Manage keys remotely to keep your IoT device security up to date

Set Up IT-Grade Custom PKIs in Minutes 

Protect Root Certificates in Kuldelski IoT HSM

No Customization in Factory 

No Human Interaction for Secret Exchange

Scalable Manufacturing Solution

Because the keys, certificates and data intended to be loaded in the ECC608 will be provisioned in the field at the time of connection, there is no need to expose those credentials to contract manufacturers nor spend test time and infrastructure cost in their factories.

Additionally, although you will have a custom root CA associated with your company name, there are no custom part numbers involved. As a result, you can better manage your inventory across multiple product lines. Financially, charges for in-field provisioning only occur if your customer connects the device; you only pay for what your customer really uses. 

Ready to Go to Production with TrustMANAGER?

There are two different ordering flows avaible to the user to go to production:

Auto Claiming 

  1. Create Microchip e-commerce account
  2. Create keySTREAM account
  3. Select Auto Claiming workflow in keySTREAM
  4. Order ECC608-TMNGTLS, no manifest upload required

Claim Devices with a Manifest

  1. First order the ECC608-TMNGTLS and download the manifest
  2. Open keySTREAM account
  3. Upload the manifest in keySTREAM
Auto Claim Ordering Flow
Claim by Manifest Ordering Flow

Products

View All Parametrics
X

Similar Devices

View All Family Devices

Supporting Content

Understanding the Role of ECC608 TrustMANAGER and Kudelski IoT SaaS

Blog Article

In this blog post, we will explore the significance of the ECC608 TrustMANAGER combined with the keySTREAM™ Software as a Service (SaaS) from Kudelski IoT, its functions and its role in establishing security and reliability in an Internet of Things environment.

How to Set up the ECC608 TrustMANAGER with keySTREAM from Kudelski IoT

Tutorial

This video will guide you through the step-by-step process of setting up the ECC068 TrustMANAGER with the keySTREAM SaaS from Kudelski IoT. You will learn how to create your custom root certificate authority and associated PKI, trigger the in-field provisioning, and get ready for certificate management services.

keySTREAM Trusted Agent (KTA) Library

GitHub Library

This page contains the keySTREAM Trusted Agent Library (KTA_LIB) Configurations and an example application. Here are the primary folders:

  • apps - Example application to demonstrate useage of KTA_LIB with MPLAB® Harmony
  • config - KTA_LIB module configuration files 
  • docs -  KTA_LIB help documentation 

Contact the TrustMANAGER Team

Contact our marketing team with questions about the ECC608 TrustMANAGER device and Kuldelski keySTREAM services.

Contact the TrustMANAGER Marketing Team