IAR Systems and Secure Thingz break new ground for IoT security with the launch of Embedded Trust and C-Trust

Game-changing security technology from Secure Thingz is available with full integration into the IAR Embedded Workbench development workflow

Stockholm, Sweden—February 13, 2019—IAR Systems Group AB (publ) (”IAR Systems”) announces that the security environment Embedded Trust™ is available for implementation in designs through the industry-leading embedded development toolchain IAR Embedded Workbench. The integration enables designers to include security development as part of their day-to-day development workflow.

In the embedded industry, security has become the main concern. With the growth of IoT, the ability to ensure the protection of intellectual property and data has become a crucial success factor. Implementation of good security has traditionally been a challenge as it is not a core competency of most developers. In order to overcome this, IAR Systems and Secure Thingz are providing new solutions for simplified, streamlined, and scalable security implementation.

The Embedded Trust environment leverages the secure hardware built into next-generation microcontrollers to provide the low-level trust anchors and secure services needed for trustworthy IoT solutions. Features include integrated identity and certificate management, a scalable Secure Boot Manager, integrated manufacturing mastering for secure deployment, and release management with versioning and update infrastructure.

In addition to Embedded Trust, the companies also provide C-Trust™ for IAR Embedded Workbench®. C-Trust is an extension to the development toolchain IAR Embedded Workbench and enables application developers to deliver secure, encrypted code. The development team is able to easily import a so called Security Context Profile, using either a profile created by an Embedded Trust user, or a pre-defined profile. The configuration includes the cryptographic keys and certificates, as well as the Secure Boot Manager configuration including device security, application update process, update policy and device memory layout. Since the correct security and encryption settings are automatically included, the developers can focus on the functionality of the application, and since they cannot change the Security Context Profile, they do not risk compromising it. After building and debugging the application code as usual with IAR Embedded Workbench, the code will be automatically mastered and encrypted using Advanced Encryption Standard (AES). Once programmed into the MCU, the application can be updated with secure code verified by the Secure Boot Manager.

“Our customers need to trust that their applications remain secure across their lifecycle and comply with the legislation that is evolving rapidly around the world,” says Stefan Skarin, CEO, IAR Systems. “At the same time, they need to be able to remain efficient and use the development processes they already have in place. By making security a natural part of day-to-day development, we are staying true to our mission of being with our customers all the way, providing complete and simplified development workflows.”

Embedded Trust and C-Trust for IAR Embedded Workbench is shipping worldwide this month. The products will be showcased at IAR Systems’ booth 4-216 and at Secure Thingz booth 4A-104 at embedded world 2019 in Nuremberg, Germany on February 26-28. Learn more at www.iar.com/security.