Silicon Labs
  • ⟵ Back
    Products
    Featured image
    Lowest-Power Wi-Fi 6 SoC Available: Introducing SiWx917
    WirelessWireless
    Bluetooth
    Wi-Fi
    Thread
    Zigbee
    Multiprotocol
    Proprietary
    Z-Wave
    Xpress
    TechnologyTechnology
    Machine Learning
    Matter
    Security
    Amazon Sidewalk
    Wi-SUN
    Non-WirelessNon-Wireless
    MCUs
    Sensors
    Interface
    Power Management
    ServicesServices
    Custom Part Manufacturing
    Long Term SDK Support
  • ⟵ Back
    Applications
    Featured image
    Watch keynotes, sessions and workshops from Works With ‘22 anytime, anywhere
    Smart HomeSmart Home
    Appliances
    Smart Locks
    LED Lighting
    Switches
    Sensors
    Industrial IoTIndustrial IoT
    Access Control
    Circuit Breakers
    Commercial Lighting
    Electric Submetering
    Human Machine Interface
    Smart HVAC
    Predictive Maintenance
    Smart CitiesSmart Cities
    Battery Storage
    EV Charging Stations
    Smart Buildings
    Smart Metering
    Smart Solar PV System
    Street Lighting
    Smart RetailSmart Retail
    Commercial Lighting
    Direction Finding
    Electronic Shelf Labels
    Loss Prevention
    Connected HealthConnected Health
    Portable Medical Devices
    Smart Hospitals
    Smart Wearable Devices
  • ⟵ Back
    Ecosystems
    Featured image
    First Complete Wireless Development Solution for Amazon Sidewalk
    Ecosystem PartnersEcosystem Partners
    Amazon Sidewalk
    Google Home
  • ⟵ Back
    Resources
    Featured image
    Simplicity Studio 5
    Fast track IoT development
    Developer ToolsDeveloper Tools
    Software Documentation
    Release Notes
    Github
    Technical Library
    Simplicity Studio
    Mobile Apps
    All SDKs
    Development Kits
    Gateways
    RTOS
    Content and TrainingContent and Training
    Tech Talks 2023
    Works With On-Demand
    Blog
    Case Studies
    Whitepapers
    Training Library
    Webinars
    SupportSupport
    Community
    Partner Network
    Channel & Distribution
    Quality and Packaging
    How to Buy
    Submit a Ticket
    Report a Security Issue
  • ⟵ Back
    Company
    Featured image
    Watch keynotes, sessions and workshops from Works With ‘22 anytime, anywhere
    CompanyCompany
    About Us
    Careers
    Management Team
    Board of Directors
    Contact Us
    News & EventsNews & Events
    Blog
    Press Room
    Events
    FinancialsFinancials
    Investor Relations
    Environmental, Social & Governance
    Financial Reports
    OfficesOffices
    India
English
  • English
  • 简体中文
  • 日本語
//
IoT Security // TrustZone

TrustZone

End-Device Security and Privacy are of Paramount Importance to IoT Consumers

TrustZone is a security software technology created by ARM for their Cortex-M processors. This has been adopted by Silicon Labs and has been integrated with our protocol stacks to create a secure system that can hide key material from the wireless stack while still providing customers the same stack API.


How does TrustZone work?

TrustZone is the logical separation of the memory into a secure processing environment (SPE) and non-secure processing environment (as shown in the figure below).

There is a predefined, restricted list of commands that can be passed from the NSPE to the SPE. This is done to minimize exposure to the SPE and keep the data stored here, secure.

For example, if a wireless stack wanted to store keys in the SPE, the specific PSA Crypto API commands can be passed to the security subsystem through a PSA driver, where these keys will be wrapped using a hardware-unique TrustZone storage key. The encrypted keys are then stored in the NVM3 storage.

Vault Mid Parts with TrustZone capabilities

Vault High Parts with TrustZone capabilities

Why is TrustZone important for securing IoT devices?

The most demanding IoT product development challenges today revolve around security. 

Security and Privacy

TrustZone provides a secure way of storing wireless cryptographic keys and other firmware used by the device from application vulnerabilities. 

For example, our Bluetooth Low Energy (LE) medical devices such as glucose meters - which use Secure Vault mid security - do not have secure key storage capabilities. Keys are stored in plaintext in flash which is not a secure way to store keys.

With TrustZone, these cryptographic keys will be stored in an encrypted way, thereby ensuring the security of your end-device.

To learn more about what differentiates Secure Vault™ Mid and Secure Vault™ High parts, please refer to the Silicon Labs IoT Product Security table.

More than 50% of attack vectors against IoT end devices are remote logical attacks.

PSA Level 2-Certifiable

One of the requirements for the PSA Level 2 certification is for the SPE to be isolated by hardware mechanisms to protect critical services and related assets from the Non-Secure Processing Environment. With the introduction of TrustZone, Vault-Mid parts now offer protection against logical software attacks and are PSA Level-2 certifiable.

Trusted Security at No Additional Cost

TrustZone APIs will be available for installation and use on Secure Vault-Mid and Secure Vault-High parts at no additional cost to the customer. 

What Protocol Stacks Will be Supported with TrustZone?

TrustZone will now be available for all Bluetooth Low Energy and Bluetooth mesh devices that use Secure Vault-Mid and Secure Vault-High security features.

EFR32BG22 Series 2 Bluetooth Low Energy (SoC) - EFR32BG22
Most Energy-efficient. 10+ lifetime on a coin cell battery. For battery-powered Bluetooth Mesh devices.
More Information
EFR32BG22 Series 2 Bluetooth Low Energy (SoC) - EFR32BG22

EFR32BG22 (BG22) Bluetooth low energy (LE) wireless SoC solutions are part of the Wireless Gecko Series 2 platform. The BG22 family's combination of best-in-class ultra-low transmit and receive power (4.1 mA TX at 0 dBm, 3.6 mA RX) and a high-performance, low-power Arm® Cortex®-M33 core (27 µA/MHz active, 1.2 µA sleep) delivers industry-leading energy efficiency that can extend coin cell battery life up to ten years. Target applications include Bluetooth mesh low-power nodes, smart door locks, personal healthcare and fitness devices. Asset tracking tags, beacons and indoor navigation also benefit from the SoCs' versatile Bluetooth Angle of Arrival (AoA) and Angle of Departure (AoD) capabilities and sub-one-meter location accuracy.

Visit EFR32BG22 Series 2 Bluetooth Low Energy SoC Family
X
Key Specs
Supports Bluetooth 5.3 & Bluetooth mesh
Ideal for ultra-low-power battery-powered IoT devices
EFR32BG22 Series 2 Bluetooth Low Energy (SoC) - EFR32BG22
IoT Wireless Connectivity Ideal for low-power battery-powered IoT devices.
More Information
EFR32BG22 Series 2 Bluetooth Low Energy (SoC) - EFR32BG22

EFR32BG22 (BG22) Bluetooth low energy (LE) wireless SoC solutions are part of the Wireless Gecko Series 2 platform. The BG22 family's combination of best-in-class ultra-low transmit and receive power (4.1 mA TX at 0 dBm, 3.6 mA RX) and a high-performance, low-power Arm® Cortex®-M33 core (27 µA/MHz active, 1.2 µA sleep) delivers industry-leading energy efficiency that can extend coin cell battery life up to ten years. Target applications include Bluetooth mesh low-power nodes, smart door locks, personal healthcare and fitness devices. Asset tracking tags, beacons and indoor navigation also benefit from the SoCs' versatile Bluetooth Angle of Arrival (AoA) and Angle of Departure (AoD) capabilities and sub-one-meter location accuracy.

Visit EFR32BG22 Series 2 Bluetooth Low Energy SoC Family
X
Key Specs
Supports Bluetooth 5.3 & Bluetooth mesh
Ideal for ultra-low-power battery-powered IoT devices
EFR32BG22 Series 2 Modules
Smallest SiP Module Small design. Reduces time-to-market of product development.
More Information
EFR32BG22 Series 2 Modules

BGM220 Bluetooth® modules are designed and built to meet the performance, security, and reliability requirements of battery-powered IoT products. Based on the EFR32BG22 SoC, BGM220 is a full solution that comes with fully upgradeable, robust software stacks, world-wide regulatory certifications, advanced development and debugging tools, and support to help accelerate time-to-market. Available in multiple packages, PCB or ultra-compact SiP, BGM220 is ideal for a broad range of Bluetooth LE applications including asset tags, beacons, portable medical, fitness, and Bluetooth mesh low power nodes.

Visit EFR32BG22 Based Bluetooth LE Modules Series 2 Family
X
Key Specs
Supports Bluetooth 5.1, 5.2 & Bluetooth Mesh
Ideal for ultra-low-power battery-powered IoT devices

Benefits of TrustZone Security

TrustZone can be used in all Bluetooth LE applications, and any application using cryptographic keys, some examples include:

Medical devices for professionals and consumers

Smart home appliances like HVAC systems

Smart lighting applications like LED bulbs

Smart home sensors that measure water leaks, temperature, humidity, etc.

Silicon Labs
Stay Connected With Us
Plug into the latest on Silicon Labs products, including product releases and resources, documentation updates, PCN notifications, upcoming events, and more.
  • About Us
  • Careers
  • Community
  • Contact Us
  • Cookies
  • Corporate Responsibility
  • Investor Relations
  • Press Room
  • Privacy and Terms
  • Site Feedback
Note: This content may contain offensive terminology that is now obsolete. Silicon Labs is replacing these terms with inclusive language wherever possible. for more information, visit our webpage.
Copyright © Silicon Laboratories. All rights reserved.
粤ICP备15107361号
Also of Interest:
  • Zigbee
  • Wi-Fi IoT Solutions: Wi-Fi Chips (SoCs), Wi-Fi...
  • Wireless

Your File Will Start Downloading Shortly

Thank you for downloading .

If you have any issues downloading, please contact sales support or product technical support.

Close
Loading Results
Close

Please select at least one column.