We detect you are using an unsupported browser. For the best experience, please visit the site using Chrome, Firefox, Safari, or Edge. X
Maximize Your Experience: Reap the Personalized Advantages by Completing Your Profile to Its Fullest! Update Here
Stay in the loop with the latest from Microchip! Update your profile while you are at it. Update Here
Complete your profile to access more resources.Update Here!

External Provisioning/Programming Solutions for SAM L11 Microcontrollers

External Provisioning/Programming Powered by Secure Thingz

We are surrounded by a myriad of Internet of Things (IoT) devices that are connected through a variety of infrastructures. This makes them more vulnerable to attacks than ever before. As the threat level continues to increase, embedded developers need to prioritize the implementation of security in their IoT applications. One approach used to secure applications is to develop/design secrets or keys that create a unique secure identity for each device. These keys are programmed/provisioned into a secure location on a microcontroller (MCU) by a secure programming provider.

To simplify the implementation of security in your product, Microchip has partnered with Secure Thingz to enable the SAM L11 family of MCUs to be provisioned at a secure external programming center. The external programming center will provide you with a provisioning kit that includes a very simple graphical software tool to enable you to securely encrypt your cryptographic keys and firmware to secure the application. After you complete the provisioning kit, the programming center will then securely provision the SAM L11 MCUs to create a secure identity that can be used as a foundation for securing your application. This identity can be used for applications such as IP protection, cloud attestation, supply chain management, secure updates and more.

Who is Secure Thingz?

Secure Thingz, Inc. is the global domain expert in device security, embedded systems, and lifecycle management. Since 2018, the company is part of IAR Systems, the future-proof supplier of Embedded Workbench® software tools for embedded development. Secure Thingz is focused on delivering advanced security solutions into the emerging industrial Internet of Things (IIoT), critical infrastructure, automotive and other markets. Their Secure Deploy™ architecture has been developed to solve the major security issues challenging the IoT.

Secure Thingz has partnered with distributors (Avnet, Arrow, and Future) who offer secure programming facilities at many locations worldwide. When you use the security tools designed by Secure Thingz, you can have the confidence that your secret information, such as keys and configuration data, can be securely injected into SAM L11 MCUs without being seen by any of the participants in your supply chain.

What is Secure Deploy?

The SAM L11 family is fully integrated with Secure Thingz’ Secure Deploy architecture that is used to provision SAM L11 MCUs at secure external programming centers. The Secure Deploy architecture has been designed to enhance and simplify security implementations and enable the protection of critical Intellectual Property (IP) throughout your product’s creation, manufacture, and management. It features:

  • Simple management of critical IP within the development process
  • Secure key management targeted for development, manufacturing, and applications
  • Elimination of over-production and counterfeiting through constrained device programming

What Does the Combination of a SAM L11 MCU and Secure Deploy Offer?

The key component in an embedded IoT device is a power-efficient MCU. The SAM L11 MCU offers advanced security features as well as ultra-low-power capabilities for battery-powered and other connected designs. The Secure Deploy (SD) manufacturing system enables you to generate and manage your secure content (key pairs, signature keys, and certificates) and securely deploy this content to a programming facility to be programmed into your SAM L11 devices. Using a secure programming center eliminates the need for you to have your own infrastructure and provides you with important provisioning services for small to extremely large volumes of up to hundreds of thousands of units.

How Can You Get Started with External Secure Provisioning of the SAM L11 MCU?

External Secure Provisioning of the SAM L11 MCU Block Diagram

As this diagram illustrates, you will follow these two basic steps:

  1. Design/development of keys and certificates: Personalize your keys and certificates using the Secure Wrapping Tool that comes with the provisioning kit provided by your selected programming partner. The basic framework is securely encrypted, signed and then sent to the programming facility.
  2. Secure programming: The secure programming facility will receive your key framework and will securely provision the blank SAM L11 MCUs with your keys and use the input from the Secure Wrapping Tool (part of the provisioning kit) to securely provision keys/certificates into the SAM L11. Even if you use an unsecured link to send the file to the programming facility, this file can only be decrypted by the Hardware Security Module (HSM) at the programmer partner’s facility. After the keys and application are programmed into the SAM L11 MCUs, the debug access levels are set to ensure that the keys cannot be hacked by most typical digital/network attacks.
Get More Information

Other Tools Offered by Secure Thingz and IAR Systems

Embedded Trust/C-Trust Security Development Environment

Embedded Trust is a security development environment providing streamlined security development in IAR Embedded Workbench®. It includes these features:

  • Integrated identity and certificate management
  • Scalable Secure Boot Manager
  • Secure deployment with integrated manufacturing mastering and encrypted support
  • Release management with versioning and update infrastructure
Embedded Trust/C-Trust Security Development Environment

New/Popular SAM L11 32-bit MCU Products

View All Parametrics
X

Similar Devices

View All Family Devices

Development Tools

Product Description

SAML10 Xplained Pro Evaluation Kit

Part Number: DM320204

SAML10 Xplained Pro Evaluation Kit

The SAM L10 Xplained Pro Evaluation Kit is ideal for evaluating and prototyping with ultra-low-power SAM L10 Arm® Cortex®-M23 based microcontrollers (MCUs). The SAM L10 MCU features general-purpose embedded control capabilities with enhanced Peripheral Touch Controller and advanced analog.

SAM L11 Xplained Pro Evaluation Kit

Part Number: DM320205

SAM L11 Xplained Pro Evaluation Kit

The SAM L11 Xplained Pro Evaluation Kit is ideal for evaluating and prototyping with ultra-low-power SAM L11 Arm Cortex-M23 based microcontrollers. These devices integrate robust security which includes Arm TrustZone® technology, secure boot, crypto acceleration, secure key storage and chip-level tamper detection. The SAM L11 MCU also features general-purpose embedded control capabilities with enhanced Peripheral Touch Controller and advanced analog.

Power Debugger

ATPOWERDEBUGGER

Power Debugger

Power Debugger is a powerful development tool for debugging and programming AVR® microcontrollers using UPDI, JTAG, PDI, debugWIRE, aWire, TPI or SPI target interfaces and Arm Cortex®-M based SAM microcontrollers using JTAG or SWD target interfaces.

QT7 Xplained Pro Extension Kit

Part Number: ATQT7-XPRO

QT7 Xplained Pro Extension Kit

The QT7 Xplained Pro Extension Kit is an extension board to evaluate robust, water-tolerant self-capacitance touch. The kit includes one board with self-capacitance slider and two self-capacitance buttons. It also has eight LEDs to enable button state and slider position feedback.

I/O1 Xplained Pro Extension Kit

Part Number: ATIO1-XPRO

I/O1 Xplained Pro Extension Kit

I/O1 Xplained Pro provides a light sensor, temperature sensor and microSD card. It connects to the extension headers of any Xplained Pro Evaluation Kit.

Demo Examples

Demo Name Demo Code Location
Trusted Execution Environment www.microchip.com/START
Cloud Enrollment with Kinibi-M

www.trustonic.com/Kinibi-M
Ultra-Low-Power Secure LoRa® IoT Node App Note – AN2835
Low-Power Weather Station www.microchip.com/START
Low-Power SleepWalking www.microchip.com/START
Water-Tolerant Touch with QT7 Xplained Pro Extension Board www.microchip.com/START
Low-Power Keypad Touch with QT3 Xplained Pro Extension Board www.microchip.com/START

Documentation

Title
SAML10/11 Sell Sheet Download

Secure Deploy™ Training

Application Notes

Getting Started with Embedded Trust and the Microchip SAM L11

Security Training Videos

Embedded Trust Demo for the SAM L11

SAM L11 Trusted Execution Environment Demo

An overview of SAML11 Trusted Execution to implement secure temperature sensor while counteracting malware and physical attacks.

 

SAM L10/L11 Driven Shield Plus

SAM L10/L11 Driven Shield Plus

A quick overview of SAM L10/L11’s Enhanced Peripheral Touch Controller (PTC) implementing Driven Shield Plus feature to showcase water tolerant touch.

SAM L11 Security Features

SAM L11 Security Features

A quick overview of SAML11 security features, use cases, comprehensive security solution framework and demos to make implementation of security simple.