Datasheet

ManualsBrandsINFINEON TECHNOLOGIES ManualsLinear ICsSLB 9635 TT1.2 FW3.17

Product Information

tion

How to reach us:

http://www.infineon.com/tpm

Published by

Infineon Technologies North America Corp.

640 N.McCarthy Blvd.

Milpitas, CA 95035

Ordering No. B189-H9422-X-X-7600

Legal Disclaimer

The information given in this Product Information shall in no

event be regarded as a guarantee of conditions or

characteristics (“Beschaffenheitsgarantie”).

With respect to any examples or hints given herein, any

typical values stated herein and/or any information regarding

the application of the device, Infineon Technologies hereby

disclaims any and all warranties and liabilities of any kind,

including without limitation warranties of non-infringement

of intellectual property rights of any third party.

Information:

For further information on technology, delivery terms,

conditions and prices please contact your nearest

Infineon Technologies Office (www.infineon.com).

Warnings

Due to technical requirements components may contain

dangerous substances. For information on the types in question

please contact your nearest Infineon Technologies Office.

Infineon Technologies Components may only be used in life

support devices or systems with the express written approval of

Infineon Technologies, if a failure of such components can

reasonably be expected to cause the failure of that life-support

device or system, or to affect the safety or effectiveness of that

device or system.

Life support devices or systems are intended to be implanted in

the human body, or to support and/or maintain and sustain

and/or protect human life. If they fail, it is reasonable to assume

that the health of the user or other persons may be

endangered.

Security Evaluation

A TPM keeps and protects critical data and serves as a trusted anchor for security applications - which implies that also a

security evaluation becomes a critical checkmark in the TCG’s certification process.

The TCG has selected the Common Criteria rules (ISO 15408 standard) as the most appropriate and worldwide recognized

scheme for evaluating the security level of a TPM.

Common Criteria (CC) methodology includes the definition of protection features as described in the product specific

protection profile document (PP) according to the expected security threats and application requirements. As a precondition

for CC security evaluation, the TCG has developed a neutral protection profile for the TPM and published it on their website.

This protection profile delivers the evaluation metrics for TPMs, which will then be used by the officially accredited trusted

test labs for security evaluation and certification.

Common Criteria (CC) for security evaluation

CC provides a comprehensive, tiered structure for certifying that security products in general meet the specified security

protection requirements. It has well-defined Evaluation Assurance Levels (EALs) that describe the scope of the evaluation

process. Developed by government agencies the Common Criteria scheme is accepted worldwide and provides the necessary

transparency to show in detail the degree of security protection which is incorporated in the evaluated product.

To obtain the certification, the product is submitted to an accredited, independent testing lab. Once the evaluation is

completed, the resulting report is forwarded to the national certification body for review and certificate issuance.

The Infineon TPM 1.2 is certified to EAL4+ Augmented, which even exceeds the level required by the TCG’s TPM Protection

Profile. EAL4 alone specifies that the TPM itself is verified to have been methodically designed, tested and reviewed. Its entire

lifecycle, starting with its design and development through to its post-production process for maintaining quality, has been

carefully checked and these procedures will be maintained. The extension “Augmented” means that the protection level

against attacks is not only oriented on the knowledge of experts, but it has additionally augmented protection mechanisms.

Additionally, Infineon’s TPM has undergone systematic vulnerability analysis to show that it not only was designed to be as

secure as possible, but it was specifically analyzed based on the latest threat and attack models. The Infineon TPM production

process and facilities are also evaluated to ensure their overall integrity.

Infineon’s Certification History

This isn’t the first time that Infineon has put one of its security chips through this type of certification. Infineon’s first TPM

(v1.1) was Common Criteria EAL3+ certified in 2004 while the new standard now requires EAL4+. Infineon has also put more

than 100 of its products (e.g. high security smartcard processors used in payment or government applications) through such

independent third-party certification - in most cases certifying them even up to CC EAL5+.

A Certified TPM Is The Best Choice

Obtaining this certification is one way that Infineon’s TPM clearly distinguishes itself from others. The Trusted Computing

Group’s Protection Profile for TPMs, the certification report for the Infineon TPM and the result of the compliance test are

publicly available documents, which can be seen at the TCG certification program white list. This further allows customers and

other stakeholders to reassure themselves in detail that Infineon’s TPM specifically meets their requirements.

More information concerning TCGs certification program as well as the TCG white list can be found at the TCG-website under

http://www.trustedcomputinggroup.org/certification.

For further questions and information please visit us at http://www.infineon.com/tpm or tpm-support@infineon.com.