Infineon Technologies' Trusted Platform Module Solution Infineon's TPM Security Solution provides low-cost and easy-to-use platform-based security which helps to ensure a safer computing environment for today's advanced PC desktop- and notebook-based architectures. w w w . i n f i n e o n . c o m /t pm N e v e r s t o p t h i n k i n g. I n f i n e o n ' s TC PA - c o m p l i a n t s e c u r i t y s o l u t i o n p r ov i d e s w o r l d - c l a s s platform security in conjunction with safer application software As internet-based communication and commerce has rapidly developed The ability to support a public key hierachy provides the first managed in the past few years, the need for enhanced platform-based system security system architecture to develop a globally assured mutual trust security has grown as well. With the emergence of e-commerce and an network for commerce and communications on PCs, PDAs, and mobile increased reliance on the internet for all forms of communication, phones. The PKI environment helps to ensure that applications are more businesses and consumers alike are in greater need of assurance that their secure, and extends the trusted computing model to numerous device communication is trustworthy. The Infineon TPM solution provides for types that could not safely communicate in the past. authenticity validation, platform integrity metrics checking, user confidentiality, and privacy. These attributes help to ensure that this safer Infineon Technologies has a well-established reputation for developing communication environment is available and address today's business and innovative and certified security solutions for numerous device types. We consumer computing needs. The Trusted Computing Platform Alliance have sold almost 3 billion security controllers. The TCPA and the (TCPA) was founded by Intel, Hewlett-Packard, Compaq, IBM, and Microsoft standards it has developed for the computing market continue to in 1999 to address these issues and to allow for the continued growth of demonstrate the need for innovation in the field of platform security. internet- and computing-based communications and commerce models. Infineon Technologies is committed to providing certified world-class Today, the TCPA has more than 200 member companies and has developed security solutions that comply with TCPA standards in order to address both hardware and software security standards to address today's need for the complexities of today’s full-time network environments. Infineon has strong platform computing-based security and management. developed the only complete end-to-end TCPA solution that includes all required hardware, software, and management utilities to design a The TPM-based system forms a Root of Trust for every computer and a complete platform security solution from one source. The Infineon TPM basis for "safer computing" among these more trusted PC clients. In the Solution offers numerous security features including non-volatile memory, near future, TPMs will be present in additional devices such as PDAs and multiple algorithm support, secure hashing, true random number mobile phones to increase the network of trusted communication for generation, key generation, numerous security controller sensors to consumers and businesses. In addition to the ability of a TPM-based prevent physical attacks, and a secure operating system. In conjunction system to authenticate remote users and systems via policy and with an on-going committment to providing complete security solutions, permission, the system can help to ensure that both users are operating Infineon Technologies will continue to provide complete solutions that within their authorized system configuration profiles. Thus, both user will guarantee the adoption of tomorrow's technologies today. privacy and confidentiality are assured for computing-based transactions and communication. One of the most important secured features of a TPM-based system is its ability to support a Public Key Infrastructure (PKI). I n f i n e o n Te c h n o l o g i e s P l a t f o r m M o d u l e Solution Provides the Following Features Trusted Platform Module ACTIVE SHIELD Secure Controller Infineon Technologies TPM Hardware Overview: ■ 64 kBytes of ROM & 8 kBytes of RAM ■ 16 kBytes of EEPROM with 500 write-erase cycles ■ 48 kBytes of EEPROM for firmware secure updates ■ RSA hardware accelerator for signature calcution and verification as well as 2048 bit key generation when using CRT ■ World-leading security protection against SPA and DPA ■ Low Pin Count (LPC) bus optimized ■ Low power consumption Software Architecture Overview: ■ Embedded Secure Operating System ■ Embedded Secure Application Support ■ TCPA Software Stack (TSS) compliant to current and released specifications ■ TCPA PC BIOS support available with design guide ■ TPM cryptographic service providers for MS-CAPI 2.0 and PKCS#11 System Integration: In order to ensure easy integration into almost every platform type PC desktop and notebook, the Infineon TPM solution utilizes the Low Pin Count (LPC) bus interface as defined by Intel Corporation. Utilizing the bus together with the low-cost TPM package I/O (LPC) Asymmetric Key Generator ACE (RSA) 2048 bit ROM (64 kB) RAM (8 kB) Hash (SHA-1, MD-5) EEPROM (16 kB) Sensors (U, f, Shield) True RNG Application Cryptographic Application Infrastructure TCPA Crypto Services Provider TSS Service Provider Boot-BIOS PC-BIOS w/ TPM/TSS BIOS-API TSS Core Services TPM Device Driver Libray Memory Absent Memory Present (MA) Driver (MP) Driver TPM Device Driver TPM-OS and Application TPM SLD 9630 TT 1.1 Motherboard Architecture using TPM CPU North Bridge South Bridge (e.g. Pentium, K6) (e.g. Intel, Via) (e.g. Intel, Via) PCI USB AC97 IDE provides cost savings and power efficiency. Due to the available bandwidth of the LPC bus (approximately 4 mBytes), the Infineon TPM can perform numerous sophisticated platform security functions to enhance the safety of today's PC architecture. TPM Main Memory (SDRAM) SuperIO LPC In conclusion, the LPC bus offers an optimized way of easily integrating Infineon's TPM SER PS/2 Par FD solution into both notebook and desktop PC BIOS images for initiation of safer computing. Low Pin Count Bus Published by Infineon Technologies AG Ordering No. B116-H7956-G3-X-7600 Printed in Germany WS 04033. Z&P 2002705 Current PC Platform