Winbond’s W77T TrustME® Secure Flash memory provides a secure storage solution for automotive application with ISO26262 ASIL-D compliance and high-performance storage needs, that meets ISO21434 Automotive CyberSecurity and Common Criteria EAL 2+ Security Certification requirements.
Secure storage octal interface with up to 400MB/s bandwidth
The W77T Secure Flash memory supports xSPI JESD251, Octal, and Xccela-compliant interfaces up to 200MHz DTR. It supports ASIL-D readiness along with ECC functionality and JESD255-compliant SPI CRC. The high bandwidth interfaces combined with fully configurable secure Flash capabilities, supports both requirements simultaneously. Applications including automotive, high performance industrial applications and high density secure storage use cases.
PQC Support and Secure Supply Chain Management
The W77T series are available in densities of 256Mb, 512Mb, and 1Gb, supporting asymmetric key cryptography algorithm and enabling devices to facilitate both Secure OTA with asymmetric PQC signatures and Secure Supply chain via LMS-OTS (NIST 800-208). Winbond is proud to be the first memory vendor to integrate PQC, meeting the requirements of the emerging regulations and setting a new standard in the industry. These devices are optimally designed for applications in Industrial IoT, networking, servers, and critical infrastructure applications.
The W77T family product supports high-performance Octal-SPI at 200MHz, extended Replay Protected Monotonic Counters (RPMC) with 8 counters for PC-based implementation. The 512Mb and 1Gb devices enable simultaneous read and write options enhancing operational efficiency for software OTA operation.
Main Features and Security Level
Winbond’s W77T series supports Single, Quad and Octal SPI interfaces, running at up to 200 MHz including Double Transfer Rate (DTR) mode, achieving 400MB/s bandwidth. The advanced security features include:
- Root of trust and secure boot
- Automotive solution with ASIL-D readiness and AEC-Q100 Grade 2 temperature
- High reliability and safety with ECC and JESD255-compliant SPI Safety Extension CRC (SSE)
- High performance with Octal and xSPI JESD251 compliant interface, at up to 200MHz DTR
- Code and Data Protection
- These devices offer robust protection for both code and data, making it exceedingly difficult for hackers to tamper with critical information.
- Authentication
- Winbond Secure Flash devices employ stringent authentication protocols, ensuring that only authorized actors and software layers gain access.
- Secure Software Updates with Rollback Protection
- The devices facilitate remote secure software updates while safeguarding against roll-back attacks, ensuring that only legitimate updates are executed, leveraging Post-Quantum Cryptography, LMS (NIST800-208)
- Platform Firmware Resiliency
- Unauthorized code changes are automatically detected, enabling the system to recover to a secure state and disturbing potential cyber threats. Platform Resiliency of Winbond Secure Flash follows NIST 800-193 recommendations.
- Secure Supply Chain Based
- Winbond's Secure Flash devices guarantee the origin and integrity of flash content throughout the supply chain. This prevents content tampering and misconfiguration during platform assembly, transportation, and configuration, safeguarding against cyber adversaries.
- Supply chain security using remote attestation and LMS asymmetric PQC algorithms (NIST SP 800-208)
- Extended RPMC
- Certified secure memory providing Trusted and Proven Solution
- ISO 15408 Common Criteria EAL 2+
- SESIP Level 2 (with IEC 62443 and NIST 8259A Ready).
- FIPS 140-3 CMVP and CAVP
- ISO 26262 Functional Safety ASIL-D compliance
- ISO21434 Automotive Cybersecurity
*Security and Safety assessment by independent laboratories