Zymbit Zymkey security modules, now called Zymkey4i, were first introduced several years ago. Based on the Microchip ATECC508A CryptoAuthentication chip, the modules were available as a USB stick, an I2C module for Raspberry Pi boards, or an SMT component, and designed to enable multifactor device ID & authentication, data encryption & signing, key storage & generation, and physical tamper detection.
The company has now informed CNX Software they had launched HSM4 cryptographic protection module and HSM6 hardware wallet with a different form factor for easy integration into embedded applications, and devkits compatible with Jetson Nano and Raspberry Pi SBCs.
Zymbit HSM4 cryptographic protection module & devkit
- HSM4 is built upon Zymkey4i module, and integrates an Arm Cortex-M0 microcontroller, as well as a secure element likely to be Microchip ATECC508A, or the more recent ATECC608B CryptoAuthentication chip if the company upgrade
- System Identity & Authentication
- Unique ID created from multiple device-specific measurements.
- Authentication required to activate cryptographic services.
- Permanent and temporary binding modes.
- Custom input factors available to OEMs.
- Data Encryption & Signing
- Cipher suite includes ECDSA, ECDH, AES-256, SHA256
- AES-256 encrypt/decrypt data service
- TRNG, suitable seed for FIPS PUB 140-2, 140-3 DRNG.
- Integrates with TLS client-side certificates
- Secure Key Generation & Storage
- Generates and stores key pairs.
- Stored in tamper-resistant silicon.
- Up to 3 private/public key pairs
- Secure Element + Security Supervisor
- Multiple layers of hardware security.
- Dual secure-processor architecture.
- Secure microcontroller supervises access to cryptographic services.
- Secure element delivers crypto-engine and key functions.
- Built-in RTC with 5ppm accuracy
- Single 30-pin Hirose connector for host connection
- Low power consumption for extended battery life
The module is designed for OEMs in mind with the 30-pin connector allowing easy integration into embedded boards, and the company released PCB footprint, schematic symbol, 3D models for Altium Designer & CircuitStudio
KiCAD, and Eagle, as well as mechanical drawings.
The company provides API’s for Python, C++, C, support for Ubuntu and Raspberry Pi OS, as well as documentation that includes getting started guides, how-to examples for disk encryption, and so on…
Zymbit HSM6 hardware wallet
HSM6 will also be offered with a similar development kit as HSM4, but using HSM6 modules instead, and shares the same software and documentation.
Availability and pricing
Zymbit HSM4 module can be ordered now for $46.00, with the unit price dropping to $30+ for 1000 pieces or more, and the development kit goes for $125. HSM6 is still in closed beta, meaning you’d need to contact the company and provide details about the project before getting hold of samples. More information can be found on Zymbit website.
Jean-Luc started CNX Software in 2010 as a part-time endeavor, before quitting his job as a software engineering manager, and starting to write daily news, and reviews full time later in 2011.
Support CNX Software! Donate via cryptocurrencies, become a Patron on Patreon, or purchase goods on Amazon or Aliexpress
Since those security modules add quite a lot of the BOM cost, I asked which specific applications it would target.
Answer:
The product is targeted at unattended equipment that transact resources of value, such as:
Such assets typically have a large number of peer-to-peer interactions where value needs to be transferred securely.
HSM6 provides the necessary identity, authentication, wallet structure, data encryption and signing functions, enclosed in a secure, easy to integrate module.