Introducing Security Suite for NXP i.MX Processor Powered Solutions

With the rise of connected devices across industries and the potential of exposure to a large attack surfaces through various wireless technologies, there is now a great need to implement security by design in embedded connected products. With any device connected to a digital network prone to an attack, iWave introduced a security suite to protect the billions of connected IoT devices.
The security suite is developed for NXP i.MX 6 and i.MX 8 high performance applications processors. With these processors built for gateways, multiple display applications, industrial systems, telematics units and V2X Solutions, there is a need to build a secure environment around the processors.
iWave Security suite secures connected devices, enabling them with security functions such as encryption, storage, data transmission and certificate management. The easy to integrate solution helps address the security challenges creating a safe and secure environment. Security Suite includes secure boot, Wi-Fi secure API, event logging, OS hardening, access control, software firewall and secure firmware update to name a few.

i.MX 8 applications processors features Advanced High Assurance Boot (AHAB) and a new Security Controller (SECO) while the i.MX 6 applications processors features High Assurance Boot (HAB).
In i.MX 6, HABv4 enables ROM to authenticate the Bootloader and kernel image. In i.MX 8, AHAB enables SECO APIs to authenticate SCU FW, SECO FW, Bootloader and kernel images which establish a chain of trust for the remaining software components by establishing a secure state of the system. The scripts provided by iWave along with NXP Code Signing Tool (CST) makes the signing process extremely easy and simple.
Secure File System takes an end-to-end approach of protecting data by cryptography preventing unauthorized access to the data storage. Without proper encryption keys, data stored on any encrypted file system cannot be read (decrypted) with an entire secure storage partition encrypted and the root file system will be loaded.
Secure storage involves protecting data stored in storage devices like eMMC, MicroSD and many more. The security suite facilitates secure storage APIs to encrypt and decrypt the storage device partition on run time, data integrity and data encryption etc. iWave secure storage APIs use CAAM black keys to store the key in CAAM blob format so that data/key is secured in non-volatile storage device across power cycles.
The iWave security suite supports robust easy to use API’s to integrate with 3rd party application and devices. The suite encompasses a compact package with a multi-level security solution.
More information on the Security Suite can be found here or a quick 1-minute video can be viewed here

For further information or enquiries, you can reach us at mktg@iwavesystems.com or contact our Regional Partners.
iWave Systems is a gold member of the NXP Partner Program, a global network of engineering companies collaborating with NXP to bring you exceptional software, tools, training, and services, and ultimately speed your time to market. To learn more, visit the iWave partner page on NXP.com