Swissbit's products for protecting data and devices

 

Security is becoming mandatory in diverse markets. Data breaches and compromised IT environments are becoming a reality.


Legal requirements force solution providers to use state-of-the-art security concepts. In Germany, DSGVO or pan European GDPR are legally binding data protection laws that need to be fulfilled. If critical systems fail or sensitive data leak, severe fines and penalties are imminent. Recent security alerts like Spectre, Meltdown, and other severe problems like vulnerability of the ubiquitous Intel Management Engine clearly demonstrate that security cannot just be placed somewhere in an appendix of a product specification but needs to be part of the DNA of each product.


While PC systems are easily maintained by online-distributed SW packages, industrial, and automotive systems still suffer low maintenance cycles and therefore stay vulnerable over a longer period. The Industrial IoT has highest requirements on quality and security. Always-on devices taking over more and more responsibility in our everyday life offer huge attack surfaces that need the highest security, and at the same time, ease of maintenance over the complete life cycle. Flexible and intuitive secure update concepts as well-trusted boot security are efficiently implemented based on the combination of security and storage by Swissbit products.

 

SWISSBIT OFFERS PRODUCT-RELATED SERVICES:

• security firmware and drivers
• logo printing
• optical and electronic personalization
• design-in of consigned smart card chips

AS WELL AS EXTENDED SERVICES:

• security consulting
• security training
• customer support
• design-in support
• connection with eco-system partner network for turnkey solutions and quick time to market

Solutions

The security product series in USB, microSD, and SD form factors addresses the growing demand for mobile, portable and industrial security. The products offer tangible hardware security in the same manner as the plug and play approach.

For various markets, Swissbit offers a broad set of security use cases. The flash memory can be used by any host to store data on the cards at high speed. Additional security functions of the card can be activated to protect any data.

Valuable data such as sensitive files, emails, photos, OS images, firmware updates, log files, and audit trails can be protected by encryption, access protection, or made resistant to tampering by digital signature.
Voice and video calls as well as data streams for M2M communication can be protected by the card in high speed. The best fitting product can be chosen depending on the use case.

Editions

Security editions are variations of storage products with different secure elements

Different use cases require specialized security features. Swissbit storage products can be combined with various types of secure element and firmware features to realize the different levels of protection.

Edition SE
Edition PE
Edition DP
Audit Trail

Secure Boot Solution for Raspberry Pi

Protecting the System Integrity of a Raspberry Pi Boot Media

The Swissbit Secure Boot Solution for Rasberry Pi allows encryption and access protection of data stored on the microSD card by various configurable security policies. It protects the boot image and software installation against manipulation, unwanted copying, or removal of a system from a defined network.

The Swissbit Secure Boot Solution for Raspberry Pi consists of a Swissbit PS-45u DP microSD card “Raspberry Edition” and a Swissbit Secure Boot SDK for Raspberry Pi.

Reference to Raspberry Pi according to http://www.raspberrypi.org

PS-45u DP „Raspberry Edition“
Tables

Security Edition

SE / PE

Audit Trail

SECURITY

Infineon / NXP smart card chip
CC EAL 5+/6+ HW and OS

Java card
Global Platform 2.2.1 / 2.2.2

RSA up to 2048 bit
optional ECC up to 512 / 521 bit
AES up to 256 bit
SHA2 up to 512 bit
RNG AIS31, FIPS-140

Compatible Middleware:
• AET SafeSign
• Cryptovision

NXP smart card chip
BSI TR-03153 certified TSE
SMAERS:EAL2
CSP: EAL4
384 bit encryption
Validity of signature certificate: 5 or 7 years + 6 months for shelf storage
Guaranteed 20 Mio signatures
Signature processing time < 250 ms
10 years retention

DRIVERS / API

Windows, Linux, Android
SDK available
PKCS#11 Middleware

Windows, Linux, Android
SDK available

Swissbit Security Trailer