NIST CAVP certification for ESCRYPT CycurHSM implemented on AURIX microcontrollers

1 min read

ETAS, a provider for Software Defined Vehicles (SDV) solutions, and Infineon Technologies have announced that they have successfully certified their cryptographic algorithm suite.

The certificate was validated under the Cryptographic Algorithm Verification Program (CAVP) of the National Institute of Standards and Technology (NIST) and granted for ESCRYPT CycurHSM.

This automotive embedded security software stack is implemented on Infineon’s second-generation AURIX TC3xx hardware security module (HSM).

The internationally recognised CAVP test protocol is considered a de facto standard and validates the quality of cryptographic algorithm implementations and ensures their correct operation as defined by NIST, the US federal agency responsible for developing cryptographic standards and guidelines. With the CAVP certification, the independent validation of the implemented cryptographic suite ensures that a critical requirement for Federal Information Processing Standards (FIPS) certification, the US federal government’s standard for cryptographic software, has been met.

“By achieving this CAVP certification, both ETAS and Infineon further demonstrate our commitment to providing best-in-class security solutions to our customers,” said Mark Elkins, Onboard Security Operational Unit Concept and Delivery Lead of ETAS. “The CAVP certification eases the burden of additional algorithm validation for automotive OEMs worldwide, ensuring that only state-of-the-art security products are installed in their vehicles.”

“This CAVP certification will further increase customer confidence in Infineon’s MCU products as well as the software solutions developed within our partner ecosystem,” added Thomas Schneid, Senior Director Software, Partnership & Ecosystem Management at Infineon Technologies. “AURIX offers a rich portfolio, and with partners like ETAS as a solution provider we can demonstrate that this is perfectly suited for demanding automotive applications in a constantly evolving market.”

ESCRYPT CycurHSM is an automotive embedded security software stack that implements a security trust anchor using the hardware security module on automotive microcontrollers (MCU). It helps meet complex OEM security requirements and can be deployed in any automotive electronic control unit (ECU) including domain controllers. ESCRYPT CycurHSM enables a smooth integration into any AUTOSAR stack or bootloader and is also useful for non-AUTOSAR systems.

Infineon’s second generation AURIX TC3xx HSM is available across all variants of the AURIX TC3xx MCU family, consequently, the CAVP validation of ESCRYPT CycurHSM V2.7.13 applies across the entire AURIX TC3xx family.

This demonstrates that the AURIX TC3xx HSM is fully capable of supporting CAVP validated cryptographic algorithm implementations with the help of integrated crypto accelerators.