Skip to main content
Products

Search History

Bookmark

Please   to show your saved searches.

Skip to main content

Personalization & provisioning

Overview
Personalization & provisioning
Online Certificate Distribution tool
Additional resources

Personalization & provisioning

What does personalization mean?

The security of an IoT ecosystem and protection against cloning relies on the capability to strictly authenticate devices, consumables, accessories and more. With STSAFE products, this authentication is performed using certificates and secret keys that provide a unique identity and its proof of authenticity.

Consequently, the protection of the certificates’ secret keys is critical. During the production and lifecycle of the devices, there are two major of leakage risks:

    • In the field: certificates and secret keys can be extracted from devices present in the field
    • During device production: certificates and secret keys can be stolen during the device manufacturing process

To counter these two attacks, ST offers to:

    • Store and operate certificates and secret keys inside STSAFE tamper-proof secure elements, equipped with best-in-class electrical security protection
    • Configure and load certificates and keys at ST certified secure manufacturing sites before delivery

STSAFE personalization is the process of generating certificates and keys and personalizing them with customer-specific information. This personalization service enables customers to have their own certificates customized to match their specific needs.

Watch the video to learn how ST’s personalization service works our dedicated animation to know more about personalization

How is provisioning done at ST secure manufacturing sites?

STSAFE production flow works as shown in the above diagram:

    • Chip development and package: ST designs and manufactures the STSAFE secure elements after which the chips are assembled into their final gpackages.
    • Personalization: At this stage, the credentials (customer-specific certificates and keys) have been generated and need to be securely provisioned into the STSAFE secure elements.
    • Customer delivery: Once the credentials have been loaded into each STSAFE secure elements in line with the customer’s specifications, devices are shipped to the customer, fully loaded and ready to be mounted on the final device.

What are the benefits of ST’s personalization service?

ST’s sites are certified by independent authorities to ensure the security of its manufacturing processes and, consequently, of its personalization services

ST’s personalization service brings several benefits to industrialization:

    • No secret or sensitive data to manipulate
    • No need for specific investment on customer production line
    • No need for specific investment in security skills
    • No need for online data logging
    • No risk of production stoppage
    • Select external partners or EMS without concern for security

ST’s personalization service is available as part of the STSAFE offering, with a minimum order quantity of 5K units.

If you are interested in this service, contact us!

Eligible products

Part number OS support Interface Certification Packages Operating temperature NVM storage
STSAFE-L010 Authentication
Secure storage
Usage monitoring 		I²C
ST1Wire		 - DFN8 From -25 to +85°C 32 Kbytes
STSAFE-A110 Strong authentication
Secure connection
establishment
Usage monitoring
Host platform integrity
LoRa- and Sigfox-compliant		 I²C CC EAL5+ SO8N
DFN8		 From -40 to +105°C 6 Kbytes
STSAFE-A120 Strong authentication
Secure connection
establishment
Usage monitoring
Host platform integrity		 I²C CC EAL5+ SO8N
DFN8		 From -40 to +105°C 16 Kbytes