Prove & Run demonstrates ProvenCore-M on STMicroelectronics’ new Ultra-Low-Power MCU STM32L5

16th of October 2018 – At ARMTechCon in San Jose, California, Prove & Run demonstrated how ProvenCore-M, its secure RTOS, can leverage the TrustZone hardware security features of the STM32L5, STMicroelectronics’ new Ultra-Low-Power MCU series, to help protect power-conscious connected devices from remote cyberattacks.

More details about the STM32L5 series are available in the full press release.

 

Paris, France – September 25th, 2018 – ARCHOS today announces the launch in January 2019 of the Safe-T Touch, the first secure hardware wallet with a touch screen, featuring an Android interface and an integrated services platform, for those who already hold crypto-currencies or who wish to open an account in crypto-assets.

Designed in partnership with Prove & Run, the Safe-T Touch embeds, in addition to a secure element used for protecting cryptographic keys, a secure, transaction-specific execution area, isolated from the Google Android operating system thanks to ProvenCore, an ultra-secure TEE providing an unrivaled level of security and featuring a trusted display.

For more information about the Safe-T Touch please refer to the complete press-release.

About Prove & Run

Prove & Run’s mission is to help its customers resolve the security challenges linked to the large-scale deployment of connected devices and of the Internet of Things by providing cost effective off-the-shelf software solutions that dramatically improve the level of security of connected systems so as to protect them against remote cyber-attacks. Further information can be found at www.provenrun.com.

Media Contact
Christophe PAGEZY
moc.n1544519092urnev1544519092orp@y1544519092zegap1544519092.ehpo1544519092tsirh1544519092c1544519092

June 19th, 2018 – Europe invests 50 million € in Secure and Safe Automated Systems

69 partners working together to develop future technologies focused on security, safety and privacy across multiple application domains

SECREDAS stands for “Product Security for Cross Domain Reliable Dependable Automated Systems. SECREDAS consortium – 69 partners from 16 European countries – has kicked-off the 50 MEuro ECSEL Joint Undertaking research and innovation project, to build a reference architecture for Secure and Safe Automated systems compliant with the new GDPR Regulation. The focus will be on automotive, rail and personal healthcare, all of which demand high security and safety, covering technologies such as radar, lidar, Vehicle-to-Infrastructure and in-vehicle networks.

The project started on May 1st, 2018 and the kick-off meeting took place on May 16-17 at NXP Semiconductors, coordinator of the project, and it will last for 3 years. First results are expected to be demonstrated at the ITS European Congress on June 3-6, 2019 in Helmond/Eindhoven, Netherlands (see https://2019.itsineurope.com/).

Bert De Colvenaer, Executive Director of the ECSEL JU: “SECREDAS is one of the first ECSEL JU funded projects which looks at security, safety and privacy across multiple application domains. The new European GDPR-regulation provides the opportunity to develop future technologies able to answer to urgent safety, security and privacy concerns. The ECSEL JU programme demonstrates once again its flexibility to take up new challenges”.

Patrick Pype, SECREDAS Project Leader: “We are proud to have gathered together the key European stakeholders with expertise in their respective application domains as well as in the security & privacy area. This will allow to make a giant leap forward in the trust of road users in autonomous transport modes and healthcare. The consortium expects that 25% of all new road vehicles will be fitted with SECREDAS technology by 2030, representing a value of 10B€”.

The intertwining of safety, security & privacy of connected and automated systems is a concern in multiple application domains for many consumers in the European Union. As an example, one in four potential buyers/users in Europe of automated driving is reluctant to do so, mainly due to a lack of trust into its security. Hence industry and research communities need to work on an answer to ensure that these concerns are no longer roadblocks for further evolutions in the transport and personal healthcare sectors.

The high-level goal of SECREDAS is to develop and validate multi-domain architecting methodologies, reference architectures, components and suitable integration and verification approaches for automated systems, as well as taking into account and influencing standardization, certification and qualification in different domains, combining high security and privacy protection while preserving functional-safety and operational performance.With SECREDAS a first important step will be made into the direction of developing “trust”-building components and (sub)systems for, in particular, the European transportation and medical industry of tomorrow.

The vision of SECREDAS is to take an important step forward by providing the means to enhance this trustworthiness. This will assist in making connected and automated vehicles a market reality, to ensure that European OEMs remain competitive and that they remain world leaders, together with embedded system and semiconductor suppliers. In addition, SECREDAS addresses cross-domain cybersecurity, privacy and safety related technologies in the areas of automated systems in the personal healthcare & railway sectors, with strong support to cross-domain actions.

Picture of the SECREDAS Kick-off Meeting at NXP Semiconductors, Munich, Germany

For more information, please contact:

Prove & Run:

Christophe Pagezy, Co-CEO

moc.n1544519092urnev1544519092orp@y1544519092zegap1544519092.ehpo1544519092tsirh1544519092C1544519092

ECSEL JU:

Alun Foster, Head of Plans and Dissemination of the ECSEL JU (Communication related queries)

ue.ap1544519092orue.1544519092lesce1544519092@rets1544519092of.nu1544519092lA1544519092

Yves Gigase, Head of Programmes of the ECSEL JU (Technology related queries)

ue.ap1544519092orue.1544519092lesce1544519092@esag1544519092ig.se1544519092vY1544519092

Partners in the SECREDAS Consortium:

Project Leader: NXP Semiconductors, NL

Austria:

Belgium:

Czech Republic:

Finland:

France:

Germany:

Hungary:

Italy:

Netherlands:

Poland:

Portugal:

Romania:

Spain:

Sweden:

Tunis:

UK:

ARM released three Threat Models and Security Analyses (TMSA, also known as a Protection Profile) prepared by Prove & Run on ARM’s behalf for respectively a network camera, a water meter and an asset tracker. A TMSA is the starting point for assessing the security risk faced by a connected device. From this research, the right level of security can be determined, and then functional requirements established to mitigate the threats for the corresponding devices.

With ProvenCore and ProvenCore-M, Prove & Run’s ultra secure OS kernel for ARM Cortex-A and Cortex-M devices, Prove & Run can help the designers and users of network cameras, water meters and asset trackers to integrate the required security features so as to be protected from cyber-attacks at the right level.

Prove & Run is proud to be a member of a consortium of industry leaders (which include Altran, Orano, Framatome, ArianeGroup, Arkema and Total) that have just launched 2IdO, a project aimed as bringing the benefits of the Internet of Things to industrial and manufacturing markets.

The 2IDO project (Industrial Internet of Devices and Operators), is a consortium made up of eleven partners including three SMEs, two research organizations and six industrial companies federated around a major industrial challenge: to develop a new global system of efficient wireless communication, from miniaturized sensor to applications, with a high penetration in constrained environments and relying on secure technological bricks adapted from existing IoT markets.

For more information please consult this press release.

Paris, France – October 23, 2017 – Prove & Run, a leading provider of IoT security solutions, announces that its award-winning ProvenCore-M for Arm®v8-M architecture is aligned with the newly announced Platform Security Architecture (PSA) from Arm. ProvenCore-M for Armv8-M, a next-generation formally proven ultra-secure RTOS, won the embedded award 2017 in the Software category at the Embedded World show in Nuremberg, Germany.

ProvenCore-M for Armv8-M provides a secure layer running inside the Arm TrustZone™-based root of trust defined by the Armv8-M architecture. ProvenCore-M for Armv8-M enables chipmakers, devices makers and solution developers to rely on a scalable secured-by-design platform for all IoT devices based on Arm Cortex®-M chips compatible with the Armv8-M architecture.

  • ProvenCore-M for Armv8-M extends the versatility of such chips and provides certified security features for sensitive security services running on top of it such as secure boot, firmware update, secure storage, etc.
  • The security properties of ProvenCore-M have been formally proven. This means that ProvenCore-M is as close as possible to “zero-bugs” and highly resistant to attacks.

“With PSA, Arm is providing the ecosystem with a low-level security API that satisfies the security requirements which are needed by the value chain to increase the security of IoT products and to enable the mass deployment of the IoT,” explains Dominique Bolignano, President and Founder of Prove & Run. “As a close security partner of Arm, we are fully committed to supporting the Arm ecosystem and PSA in particular with our products and offerings.”  

“Given the unprecedented pace of diverse connected device deployments, security can no longer be considered optional,” said Paul Williamson, vice president and general manager, IoT Device IP, Arm. “To address this, Arm developed PSA to provide the industry with a common framework for reducing the cost, time and risk associated with securing connected devices. Through extensive analysis and a review process, which included input from Prove & Run, a trusted secure technology solutions provider, we are ensuring the next trillion connected devices are built on a common secure foundation.”

About Prove & Run

Prove & Run’s mission is to help its customers resolve the security challenges linked to the large-scale deployment of connected devices and of the Internet of Things by providing cost effective off-the-shelf software solutions that dramatically improve the level of security of connected systems so as to protect them against remote cyber-attacks. Further information can be found at www.provenrun.com.

 

Media Contact
Christophe PAGEZY
moc.n1544519092urnev1544519092orp@y1544519092zegap1544519092.ehpo1544519092tsirh1544519092c1544519092

Prove & Run named a Cool Vendor in Gartner’s “Cool Vendors in IoT Security, 2017”.

Paris, France – June 8th, 2017 – Prove & Run, a leading provider of IoT security solutions, has been named a Cool Vendor in Gartner’s May 2017 research “Cool Vendors in IoT Security, 2017” by Earl Perkins et al., Vendors selected as a Cool Vendor are innovative, impactful and intriguing, according to Gartner.

Prove & Run provides off-the-shelf, secure OS microkernel, secure hypervisor and secure solutions, which are intended to elevate the security of large-scale connected IoT devices against cyber attacks. Prove & Run’s microkernel and hypervisor enable high assurance level to security-critical services that are needed for IoT-security use cases. These include secure boot, firmware over the air updates, securing and filtering communications channels, using and managing keys, remote inspection and maintenance, logging events, intrusion detection/protection and isolation of legacy OS and software stacks.

Prove & Run enables OEMs, chipmakers, device makers and solution providers with scalable and secured solutions for all ARM Cortex-A and Cortex-M- based IoT devices, with cost and skill requirements that fall within value chain constraints.

Prove & Run’s President and Founder, Dominique Bolignano says: “Gartner is one of the most trusted and reputable sources for technology insights which are relied on by companies and organizations all over the world. Our security engineers work hard to bring innovation to the emerging IoT security market. We are honored to be named a Cool Vendor by Gartner. We believe this is an important recognition that fully corroborates our vision and strategy.”

 

About Prove & Run

Prove & Run’s mission is to help its customers resolve the security challenges linked to the large-scale deployment of connected devices and of the Internet of Things by providing cost effective off-the-shelf software solutions that dramatically improve the level of security of connected systems so as to protect them against remote cyber-attacks. Further information can be found at www.provenrun.com.

 

Gartner Disclaimer

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

 

Media Contact
Christophe PAGEZY
moc.n1544519092urnev1544519092orp@y1544519092zegap1544519092.ehpo1544519092tsirh1544519092c1544519092

 

Paris, France – March 14th, 2017 – Prove & Run is the winner of the embedded award 2017 in the Software category with ProvenCore-M for ARM® TrustZone® technology on the ARMv8-M architecture. The award, granted by an independent jury of experts, pays tribute to especially innovative products or development that are unique and future oriented.

ProvenCore-M for ARMv8-M is a new version of ProvenCore-M, Prove & Run’s next generation of formally proven ultra-secure RTOS, providing a secure layer running in the TrustZone root of trust in ARMv8-M processors such as ARM Cortex®-M23 and Cortex-M33.

  • ProvenCore-M for ARMv8-M allows extended versatility and provides certified security features for sensitive security services running on top of it such as secure boot, firmware update, secure storage, etc.
  • The security properties of ProvenCore-M have been formally proven. This allows ProvenCore-M to be as close as possible to “zero-bugs” and highly resistant to attacks.

ProvenCore-M for ARMv8-M enables chipmakers, devices makers and solution developers to rely on a scalable secured-by-design platform for all IoT devices based on Cortex-M chips compatible with the ARMv8-M architecture.

“The recognition granted to us by this award is a tremendous encouragement,” explains Dominique Bolignano, President and Founder of Prove & Run. “With ProvenCore-M for ARMv8-M, protecting IoT devices against remote attacks will become very simple and integration of the security services with the application environment almost transparent. This will remove one of the major security barriers that the IoT market is facing today.”

“Now that TrustZone technology is broadly available across both MCUs and application processors, it is vital that high-assurance security solutions such as ProvenCore-M are accessible for partners to incorporate into their designs,” said Marc Canel, vice president of security systems, ARM. “Prove & Run’s secure technologies are highly respected in the industry and their recognition at the Embedded World conference is well-deserved.”

 

About Prove & Run

Prove & Run’s mission is to help its customers resolve the security challenges linked to the large-scale deployment of connected devices and of the Internet of Things by providing cost effective off-the-shelf software solutions that dramatically improve the level of security of connected systems so as to protect them against remote cyber-attacks. Further information can be found at www.provenrun.com or visit us during the exhibition at Booth 4A-431.

Paris, France – March 13th, 2017 – With the advent of IoT, there are very attractive business models for hackers for exploiting vulnerabilities of connected systems, in particular for those attacks that can be exploited remotely. Protecting those devices becomes critical. Prove & Run, a provider of ultra-secure off-the-shelf software solutions for connected systems, announces a one-step solution to protect connected devices against the most sophisticated remote cyber-attacks.

Prove & Run’s one-step security solution builds on the TrustZone® hardware protection of ARM® Cortex®-A processors, that allows executing security services independently of the main operating system (Rich OS) and its applicative environment. The solution is composed of a Secure boot and Secure Firmware Update manager together with OpenVPN/TLS security services:

  • Firmware boot and update are highly sensitive operations, as a hacker can misuse it to brick or disable the device, unlock restricted features, or load a modified version of the firmware with disabled security and/or safety features. The proposed Firmware manager is designed to make sure that that the firmware stays authentic (PKI signature) and cannot be modified or downgraded by an attacker.
  • OpenVPN tunnel with a remote server (over TCP/IP and/or WiFi) allows enforcing that the connection to the device’s control server can be established even in adverse conditions, in particular to get an important update. This is particularly critical for devices integrated in a cloud-based offer. In the proposed solution the OpenVPN sensitive assets are stored and manipulated in a dedicated restricted TrustZone execution environment, protecting these assets even in case of full compromising of the Rich OS.

The one-step security solution relies on ProvenCore, Prove & Run’s highly secure OS kernel. The security properties of ProvenCore have been formally proven, down to generated code. This allows being as close as possible to “zero-bugs” and therefore highly resistant to attacks.

Prove & Run’s one-step security solution is currently available on NXP® Semiconductor i.MX application processors.

“The growth of connected devices and IoT magnifies the importance of strong security from the component level to the cloud,” said Arnaud Van den Bossche, manager for i.MX automotive products at NXP Germany GmbH. “We have been working closely with Prove & Run so they can leverage the exceptional security features of i.MX processors to further strengthen the resistance of their solution.”

“With our one-step security solution, we want to make security easily accessible to security non-specialists. The solution can be integrated into new or existing devices to add the right protective measures without modifying their functional behavior. After integrating our solution, devices will remain under operational control even if the main operating system becomes corrupted by an attack” concludes Dominique Bolignano, President and Founder of Prove & Run.

This one-step solution will be demonstrated at NXP’s booth (4A-220) during Embedded World 2017 in Nuremberg.

About Prove & Run

Prove & Run’s mission is to help its customers resolve the security challenges linked to the large-scale deployment of connected devices and of the Internet of Things by providing cost effective off-the-shelf software solutions that dramatically improve the level of security of connected systems so as to protect them against remote cyber-attacks. Further information can be found at www.provenrun.com.

 

Geneva, Switzerland and Paris, France – March 8, 2017 – STMicroelectronics (NYSE: STM), a global semiconductor leader serving customers across the spectrum of electronics applications, and Prove & Run, a provider of ultra-secure off-the-shelf software solutions for securing connected systems, announced today that they are demonstrating their joint scalable security platform for IoT (Internet of Things) devices at Embedded World, Nuremberg, March 14-16, 2017.

The platform combines Prove & Run’s ProvenCore-M™ highly secure operating system with the advanced security capabilities of ST’s STM32L4™ microcontrollers (MCU), and its Common Criteria-certified STSAFE™-A100 secure element. The platform covers the full range of IoT security needs, from the most basic to the highest level of security requirements with Common Criteria -certified parts.

The new security platform eases the creation of highly secure IoT products, allowing customers to concentrate on the development of the functional part of their application. Product developers without any special skills in security will benefit from already validated and proven security services, including application isolation, secure boot, secure firmware update, and key-storage resistant to physical attacks.

The platform components include:

  • The STM32L4 MCUs combine ST’s ultra-low-power microcontroller technology with ARM® Cortex®-M4 core, targeting next-generation energy-conscious consumer, industrial, medical, and metering applications. STM32L4 devices achieve up to 100 DMIPS at just 37µA/MHz of active power consumption. In addition to a large set of smart peripherals, advanced and low-power analog circuits, and up to 1 MB of Flash and 320 KB of SRAM, STM32L4 MCUs integrate numerous security mechanisms (MPU, debug life-cycle, execute-only protection) that allow development of highly secure, robust, and reliable embedded solutions.
  • ProvenCore-M, a highly secure RTOS with proven properties for enforcing the isolation of applications and stability of the platform. Conceived as a micro-kernel, it aims at having a minimal impact on integrating existing code as an application, while providing strong security services and enforcing state-of-the-art secure coding recipes. It also includes dedicated secure boot and secure application-update mechanisms that can optionally be integrated with STSAFE-A100 platform integrity services.
  • The STSAFE-A100 Secure Element, a Common Criteria EAL5+ -certified turnkey state-of-the-art security solution for preventing counterfeiting, cloning, and stealing information, and helping to fight against denials of service. The STSAFE-A100 features a secure embedded operating system that provides authentication, secure communication, secure data-management and platform integrity services, such as secure boot and firmware upgrade. It is personalized with keys and secrets at ST facilities.

The ST/Prove & Run platform will be showcased on ST’s booth (Hall 4A/138) at Embedded World 2017 in Nuremberg, March 14-16, in a robotic demo that highlights the solution robustness, its RTOS capabilities, as well as the secure boot and secure application update.

Technical Notes to Editors:

The combination of ProvenCore-M running inside the STM32L4 with the external features of the STSAFE-A100 provides a scalable level of security:

  • The ProvenCore-M RTOS delivers the market-unique level of security by enforcing strict isolation between each application, relying on the STM32L4 hardware mechanisms. It guarantees proper system behavior, even in case of bugs or attacks, and strict integrity and confidentiality of the assets of each task. It also allows the control of which peripheral can be accessed by each application, thus limiting the attack surface of existing drivers, and ensuring platform stability by detecting a denial of service and unresponsive application that can be relaunched automatically.
  • The STSAFE-A100 completes the STM32L4 and ProvenCore-M platform by providing a tamper-proof device with secure storage and cryptographic coprocessor to execute secure boot, firmware updates, and ProvenCore-M applications, e.g. TLS key storage and negotiations. The high level of resistance to attacks, including physical ones, of the STSAFE-A100 guarantees that the most sensitive secrets of the platform are safe from divulgation or cloning. The protection provided by the STSAFE-A100 against physical attacks, fault injection, and side channel attacks is very effective. By enforcing direct and exclusive control of the STSAFE-A100, ProvenCore-M is capable of enforcing strict usage of its secrets and of preventing any malicious usage by MCU applications, such as when a low-level driver may serve as an entry point for attack due to internal bugs.

About STMicroelectronics

ST is a global semiconductor leader delivering intelligent and energy-efficient products and solutions that power the electronics at the heart of everyday life. ST’s products are found everywhere today, and together with our customers, we are enabling smarter driving and smarter factories, cities and homes, along with the next generation of mobile and Internet of Things devices. By getting more from technology to get more from life, ST stands for life.augmented.

In 2016, the Company’s net revenues were $6.97 billion, serving more than 100,000 customers worldwide. Further information can be found at www.st.com.

About Prove & Run

Prove & Run’s mission is to help its customers resolve the security challenges linked to the large-scale deployment of connected devices and of the Internet of Things by providing cost effective off-the-shelf software solutions that dramatically improve the level of security of connected systems so as to protect them against remote cyber- attacks. Further information can be found at www.provenrun.com.

For more information please contact: