Overview

This product enables secure updating of flash ROM embedded in MCUs and in preventing illicit firmware being booted up (secure booting). This driver controls AES, AES-GCM, AES-CMAC encryption and decryption and the generation of random numbers through high-speed hardware calculation by the Trusted Secure IP modules. As a result, this driver can help you to protect "Internet-of-Things" (IoT) embedded devices from viral infections and eavesdropping. Trusted Secure IP includes a full-function version "TSIP" and limited function version "TSIP-Lite".

Topics

The Trusted Secure IP Driver for RE Family V.1.00 has been released. The support for the RE01 group started.

Release Information

Target Device 1 Product Name Status Version/Release
RX23W
RX231
RX65N, RX651
RX66T
RX72M
RX72T
Trusted Secure IP Driver for RX Family Available Latest Ver.: V1.08 Release 00
Released: Sep 30, 2019
RE01 Trusted Secure IP Driver for RE Family Available Latest Ver.: V1.00 Release 00
Released: Oct 31, 2019
  1. Refer to the each MCU User's Manual: Hardware for the type names of product that include a TSIP module.

Operating Environment

Obtaining the product

Features

  • Cryptographic functions which provide advanced security can be embedded in mass-produced products at low cost
  • High-speed execution of the AES, a world standard cryptographic algorithm
  • Support for AES-GCM, which is frequently included in the required specifications of smart meters
  • Functions for safely updating firmware
  • Easily combined with other device drivers for RX or RE MCUs

Components

  • Trusted Secure IP Driver main body
  • Trusted Secure IP Driver manual
  • Sample code demonstrating application of the Trusted Secure IP Driver
    1. Sample code for confirming the way user keys are written
    2. Sample code for confirming the secure updating of firmware from USB memory or UART.

Functions

Function Algorithm (mode/method) TSIP-Lite
(RX23W, RX231, RX66T, RX72T, RE01)
TSIP
(RX65N, RX651, RX72M)
Public-Key Cryptography Signature generation and verification RSA (RSASSA-PKCS1-v1_5)
ECC (ECDSA)
Encrypt/Decrypt RSA (RSAES-PKCS1-v1_5)
Key pair generation RSA 1024/2048bit
ECC P-192/224/256
Symmetric-Key Cryptography AES-128/256 bit (ECB/CBC/GCM)
Triple-DES 56/56x2/56x3 bit (ECB/CBC)
Message authentication AES-128/256 bit (CMAC)
Hash function SHA-1, SHA-256
MD5
Random number generation -
Key management function AES 128/256 bit
RSA 1024/2048 bit
ECC P192/224/256
Triple-DES 56/56x2/56x3 bit
Key update function AES 128/256 bit
RSA 1024/2048 bit
ECC P192/224/256
Triple-DES 56/56x2/56x3 bit
SSL/TLS cooperation function TLS1.2 compliant
Supporting cipher suites:
TLS_RSA_WITH_AES_128_CBC_SHA
TLS_RSA_WITH_AES_256_CBC_SHA
TLS_RSA_WITH_AES_128_CBC_SHA256
TLS_RSA_WITH_AES_256_CBC_SHA256
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Secure booting, Secure updating of firmware -

 Available | — Unavailable

Operating Environment

MCU RX Family RE Family
IDE CS+ V8.02.00 or later
e2 studio V7.5.0 or later
IAR Embedded Workbench for ARM version 8.32.1 or later
e2 studio V7.6.0
C Compiler C/C++ Compiler Package for RX Family V3.00.00 or later IAR C/C++ Compiler for ARM version 8.32.1 or later
GCC ARM Embedded Version 6.3.1.20170620
Debugger E1 emulator
E20 emulator
E2 emulator Lite
IAR I-jet
Segger JLink
Segger JLink
Evaluation board Renesas Starter Kit for RX231 (B Mask: built-in Trusted Secure IP)
Renesas Starter Kit+ for RX65N-2MB (Built-in Trusted Sesure IP)
Renesas Starter Kit for RX66T (Built-in Trusted Sesure IP)
Renesas Starter Kit+ for RX72M (Built-in Trusted Secure IP)
Renesas Starter Kit for RX72T (Built-in Trusted Secure IP)
Evaluation Kit RE01 1500KB
Evaluation board (optional) 2 Wireless LAN expansion board package for RSK (includes Wireless LAN module (eWBC))(Part Number: RTK0ZZZZZZP00000BR)

2. This board is required to check the operation of sample code for checking the secure updating of firmware via wireless LAN.

Purpose

  • Cryptographic communications among CPUs in equipment at sites or within equipment
  • Secure updating of firmware for embedded devices in general

Obtaining the product

We will provide the product to customers who will be adopting or plan to adopt a Renesas microcontroller. Please contact your local Renesas Electronics sales office or distributor.

Target Devices

Development Tools Support

Title Description
My Renesas Create a My Renesas account to use our tool download services,
receive e-newsletter/update notifications, and take advantage of our other services.
e-learning Information for studying and learning about microcontrollers and microprocessors.
FAQ Frequently asked questions and useful hints for development.
Forum A forum and community site to share technical information,
questions and opinions with others who use Renesas MCU's.
Tool News Tool release information and other important information.
Operating Environment Information on system requirements and operating environment for the latest version of tools.
Info on Discontinued Products A list of Renesas software and tools that have been discontinued and
are no longer being offered for new projects.