STM32MPUSSP-UTIL

Product overview

Description

STM32MPUSSP-UTIL is a solution for secure secret provisioning, protecting the transport of the original equipment manufacturer (OEM) keys from their generation to their storage in the STM32 microprocessor's internal memory during device manufacturing.

In the case of a device failure (return material authorization), STM32 MPUs feature a mechanism to reopen the device while maintaining protection on other secrets and keys. This mechanism is secured by a password that the OEM can program using STM32MPUSSP-UTIL.

Regulations, standards, or applications mandate the storage of keys in devices. These keys are sensitive assets that require protection during their generation, injection into the devices, and storage and use within the devices. The transport of these keys from their generation (such as in an HSM) to their injection into the MPUs (on the manufacturing line) represents a sensitive operation.

Outsourcing product manufacturing allows original equipment manufacturers to reduce direct costs and focus on high-value activities. However, contract manufacturing puts the OEM secrets at risk. Since the contract manufacturer (CM) handles the OEM's intellectual property (IP), it might be disclosed to other customers or appropriated.

To meet these security requirements and protect OEMs against any leakage of their IP, STMicroelectronics introduces a new security concept: Secure secret provisioning (SSP), represented by STM32MPUSSP-UTIL for STM32 MPUs. STM32MPUSSP-UTIL enables the secure programming of OEM secrets into the STM32 MPUs' OTP area, ensuring confidentiality, authentication, and integrity.

The STM32 MPUs support protection mechanisms that safeguard critical operations (such as cryptographic algorithms) and critical data (such as secret keys) against unauthorized access. SSP is a secure mechanism implemented in STM32 MPUs that enables the secure and controlled installation of OEM secrets in untrusted production environments.

SSP prevents:

Access to OEM secrets by the contract manufacturer
Extraction or disclosure of OEM secrets
Over-manufacturing of OEM devices

SSP initiates device security processes, including the secure boot chain and authentication.

Information about SSP is available from various sources:

The AN5510 application note about secure secret provisioning (SSP) on STM32 microprocessors
The Secure Secret Provisioning (SSP) overview wiki page on wiki.st.com/stm32mpu
The How to deploy SSP using a step-by-step approach wiki page on wiki.st.com/stm32mpu
The STM32MPUSSP-UTIL product page on the www.st.com website

All features
Support for various services and API functions to integrate in the user's secure programming tool:

STM32HSM-V2 personalization data files

OEM secrets and keys programming into the OTP memory of STM32 MPUs

OEM RMA password programming into the OTP memory of STM32 MPUs

Compatibility with STM32CubeProgrammer and STM32 Trusted Package Creator (STM32CubeProg) v2.18.0 and above

Secure secret provisioning
Read more Read less

Get Software

Part Number	General Description	Latest version	Supplier	ECCN (EU)	ECCN (US)	Download
STM32MPUSSP-UTIL	Root Security System binaries extensions and configuration files package for STM32MPU	1.0.0	ST	NEC	EAR99	x Warning Please note, that cookies should be enabled for successful downloading the software. x Get Software Something went wrong with the server request. Please try again in a few moments. If you have an account on my.st.com, login and download the software without any further validation steps. If you don't want to login now, you can download the software by simply providing your name and e-mail address in the form below and validating it. This allows us to stay in contact and inform you about updates of this software. For subsequent downloads this step will not be required for most of our software. First Name: Last Name: E-mail address: Please enter a valid e-mail address. Please review our Privacy Statement that describes how we process your profile information and how to assert your personal data protection rights Please keep me informed about future updates for this software or new software in the same category To validate your e-mail and start the download, please click on the link inside the e-mail that has been sent to you. This link will be valid for 24 hours. Please check your spam filters in case you did not receive the e-mail. x Your registration has been successfully submitted! To validate your e-mail and start the download, please click on the link inside the e-mail that has been sent to you. This link will be valid for 24 hours. Please check your spam filters in case you did not receive the e-mail. x Your e-mail has not yet been validated. The e-mail that you have entered during the download attempt has not yet been validated. Please check your inbox for the e-mail with the download link. In case you did not receive the e-mail, or you entered a wrong e-mail address, you can start-over the process. x About Requesting Software For security / validation purposes, all software download requests must originate from a valid email address. ST.com users may login at this time to begin download. Non-ST.com users may either create an account at this time or enter an email address to receive a download link to the software. x License Agreement Download as .pdf BY INSTALLING, COPYING, DOWNLOADING, ACCESSING OR OTHERWISE USING THIS SOFTWARE OR ANY PART THEREOF (AND THE RELATED DOCUMENTATION) FROM STMICROELECTRONICS INTERNATIONAL N.V, SWISS BRANCH AND/OR ITS AFFILIATED COMPANIES (STMICROELECTRONICS), THE RECIPIENT, ON BEHALF OF HIMSELF OR HERSELF, OR ON BEHALF OF ANY ENTITY BY WHICH SUCH RECIPIENT IS EMPLOYED AND/OR ENGAGED AGREES TO BE BOUND BY THIS SOFTWARE LICENSE AGREEMENT. Under STMicroelectronics’ intellectual property rights, the redistribution, reproduction and use in source and binary forms of the software or any part thereof, with or without modification, are permitted provided that the following conditions are met: Redistribution of source code (modified or not) must retain any copyright notice, this list of conditions and the disclaimer set forth below as items 10 and 11. Redistributions in binary form, except as embedded into microcontroller or microprocessor device manufactured by or for STMicroelectronics or a software update for such device, must reproduce any copyright notice provided with the binary code, this list of conditions, and the disclaimer set forth below as items 10 and 11, in documentation and/or other materials provided with the distribution. Neither the name of STMicroelectronics nor the names of other contributors to this software may be used to endorse or promote products derived from this software or part thereof without specific written permission. This software or any part thereof, including modifications and/or derivative works of this software, must be used and execute solely and exclusively on or in combination with a microcontroller or microprocessor device manufactured by or for STMicroelectronics. No use, reproduction or redistribution of this software partially or totally may be done in any manner that would subject this software to any Open Source Terms. “Open Source Terms” shall mean any open source license which requires as part of distribution of software that the source code of such software is distributed therewith or otherwise made available, or open source license that substantially complies with the Open Source definition specified at www.opensource.org and any other comparable open source license such as for example GNU General Public License (GPL), Eclipse Public License (EPL), Apache Software License, BSD license or MIT license. STMicroelectronics has no obligation to provide any maintenance, support or updates for the software. The software is and will remain the exclusive property of STMicroelectronics and its licensors. The recipient will not take any action that jeopardizes STMicroelectronics and its licensors' proprietary rights or acquire any rights in the software, except the limited rights specified hereunder. The recipient shall comply with all applicable laws and regulations affecting the use of the software or any part thereof including any applicable export control law or regulation. Redistribution and use of this software or any part thereof other than as permitted under this license is void and will automatically terminate your rights under this license. THIS SOFTWARE IS PROVIDED BY STMICROELECTRONICS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS, IMPLIED OR STATUTORY WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT OF THIRD PARTY INTELLECTUAL PROPERTY RIGHTS, WHICH ARE DISCLAIMED TO THE FULLEST EXTENT PERMITTED BY LAW. IN NO EVENT SHALL STMICROELECTRONICS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. EXCEPT AS EXPRESSLY PERMITTED HEREUNDER, NO LICENSE OR OTHER RIGHTS, WHETHER EXPRESS OR IMPLIED, ARE GRANTED UNDER ANY PATENT OR OTHER INTELLECTUAL PROPERTY RIGHTS OF STMICROELECTRONICS OR ANY THIRD PARTY. Decline Accept Get latest

All tools & software

Software development tools

	Part number	Status	Description	Type	Supplier
Worldwide,Asia,Europe,Africa,North America,South America,Oceania,Afghanistan,Bahrain,Bangladesh,Bhutan,Brunei,Burma (Myanmar),Cambodia,China,East Timor,India,Indonesia,Iraq,Japan,Jordan,Kazakhstan,Kuwait,Kyrgyzstan,Laos,Malaysia,Maldives,Mongolia,Nepal,Oman,Pakistan,Philippines,Qatar,Russian Federation,Saudi Arabia,Singapore,South Korea,Sri Lanka,Taiwan,Tajikistan,Thailand,Turkmenistan,United Arab Emirates,Uzbekistan,Vietnam,Yemen,Albania,Andorra,Armenia,Austria,Azerbaijan,Belarus,Belgium,Bosnia and Herzegovina,Bulgaria,Croatia,Cyprus,Czech Republic,Denmark,Estonia,Finland,France,Georgia,Germany,Greece,Hungary,Iceland,Ireland,Israel,Italy,Latvia,Liechtenstein,Lithuania,Luxembourg,Macedonia,Malta,Moldova,Monaco,Montenegro,Netherlands,Norway,Poland,Portugal,Romania,San Marino,Serbia,Slovakia,Slovenia,Spain,Sweden,Switzerland,Turkey,Ukraine,United Kingdom,Vatican City,Algeria,Angola,Benin,Botswana,Burkina,Burundi,Cameroon,Cape Verde,Central African Republic,Chad,Comoros,Democratic Republic of Congo,Djibouti,Egypt,Equatorial Guinea,Eritrea,Ethiopia,Gabon,Gambia,Ghana,Guinea,Guinea-Bissau,Ivory Coast,Kenya,Lesotho,Liberia,Libya,Madagascar,Malawi,Mali,Mauritania,Mauritius,Morocco,Mozambique,Namibia,Niger,Nigeria,Rwanda,Sao Tome and Principe,Senegal,Seychelles,Sierra Leone,Somalia,South Africa,Swaziland,Tanzania,Togo,Tunisia,Uganda,Zambia,Zimbabwe,Antigua and Barbuda,Bahamas,Barbados,Belize,Canada,Costa Rica,Dominica,Dominican Republic,El Salvador,Grenada,Guatemala,Haiti,Honduras,Jamaica,Mexico,Nicaragua,Panama,Saint Kitts and Nevis,Saint Lucia,Saint Vincent and the Grenadines,Trinidad and Tobago,United States,Argentina,Bolivia,Brazil,Chile,Colombia,Ecuador,Guyana,Paraguay,Peru,Suriname,Uruguay,Venezuela,Australia,Fiji,Kiribati,Marshall Islands,Micronesia,Nauru,New Zealand,Palau,Papua New Guinea,Samoa,Solomon Islands,Tonga,Tuvalu,Vanuatu	STM32CubeIDE	Active	Integrated Development Environment for STM32	STM32 IDEs	ST	STM32CubeIDE Description: Integrated Development Environment for STM32
Worldwide,Asia,Europe,Africa,North America,South America,Oceania,Afghanistan,Bahrain,Bangladesh,Bhutan,Brunei,Burma (Myanmar),Cambodia,China,East Timor,India,Indonesia,Iraq,Japan,Jordan,Kazakhstan,Kuwait,Kyrgyzstan,Laos,Malaysia,Maldives,Mongolia,Nepal,Oman,Pakistan,Philippines,Qatar,Russian Federation,Saudi Arabia,Singapore,South Korea,Sri Lanka,Taiwan,Tajikistan,Thailand,Turkmenistan,United Arab Emirates,Uzbekistan,Vietnam,Yemen,Albania,Andorra,Armenia,Austria,Azerbaijan,Belarus,Belgium,Bosnia and Herzegovina,Bulgaria,Croatia,Cyprus,Czech Republic,Denmark,Estonia,Finland,France,Georgia,Germany,Greece,Hungary,Iceland,Ireland,Israel,Italy,Latvia,Liechtenstein,Lithuania,Luxembourg,Macedonia,Malta,Moldova,Monaco,Montenegro,Netherlands,Norway,Poland,Portugal,Romania,San Marino,Serbia,Slovakia,Slovenia,Spain,Sweden,Switzerland,Turkey,Ukraine,United Kingdom,Vatican City,Algeria,Angola,Benin,Botswana,Burkina,Burundi,Cameroon,Cape Verde,Central African Republic,Chad,Comoros,Democratic Republic of Congo,Djibouti,Egypt,Equatorial Guinea,Eritrea,Ethiopia,Gabon,Gambia,Ghana,Guinea,Guinea-Bissau,Ivory Coast,Kenya,Lesotho,Liberia,Libya,Madagascar,Malawi,Mali,Mauritania,Mauritius,Morocco,Mozambique,Namibia,Niger,Nigeria,Rwanda,Sao Tome and Principe,Senegal,Seychelles,Sierra Leone,Somalia,South Africa,Swaziland,Tanzania,Togo,Tunisia,Uganda,Zambia,Zimbabwe,Antigua and Barbuda,Bahamas,Barbados,Belize,Canada,Costa Rica,Dominica,Dominican Republic,El Salvador,Grenada,Guatemala,Haiti,Honduras,Jamaica,Mexico,Nicaragua,Panama,Saint Kitts and Nevis,Saint Lucia,Saint Vincent and the Grenadines,Trinidad and Tobago,United States,Argentina,Bolivia,Brazil,Chile,Colombia,Ecuador,Guyana,Paraguay,Peru,Suriname,Uruguay,Venezuela,Australia,Fiji,Kiribati,Marshall Islands,Micronesia,Nauru,New Zealand,Palau,Papua New Guinea,Samoa,Solomon Islands,Tonga,Tuvalu,Vanuatu	STM32CubeMX	Active	STM32Cube initialization code generator	STM32 configurators and code generators	ST	STM32CubeMX Description: STM32Cube initialization code generator
Worldwide,Asia,Europe,Africa,North America,South America,Oceania,Afghanistan,Bahrain,Bangladesh,Bhutan,Brunei,Burma (Myanmar),Cambodia,China,East Timor,India,Indonesia,Iraq,Japan,Jordan,Kazakhstan,Kuwait,Kyrgyzstan,Laos,Malaysia,Maldives,Mongolia,Nepal,Oman,Pakistan,Philippines,Qatar,Russian Federation,Saudi Arabia,Singapore,South Korea,Sri Lanka,Taiwan,Tajikistan,Thailand,Turkmenistan,United Arab Emirates,Uzbekistan,Vietnam,Yemen,Albania,Andorra,Armenia,Austria,Azerbaijan,Belarus,Belgium,Bosnia and Herzegovina,Bulgaria,Croatia,Cyprus,Czech Republic,Denmark,Estonia,Finland,France,Georgia,Germany,Greece,Hungary,Iceland,Ireland,Israel,Italy,Latvia,Liechtenstein,Lithuania,Luxembourg,Macedonia,Malta,Moldova,Monaco,Montenegro,Netherlands,Norway,Poland,Portugal,Romania,San Marino,Serbia,Slovakia,Slovenia,Spain,Sweden,Switzerland,Turkey,Ukraine,United Kingdom,Vatican City,Algeria,Angola,Benin,Botswana,Burkina,Burundi,Cameroon,Cape Verde,Central African Republic,Chad,Comoros,Democratic Republic of Congo,Djibouti,Egypt,Equatorial Guinea,Eritrea,Ethiopia,Gabon,Gambia,Ghana,Guinea,Guinea-Bissau,Ivory Coast,Kenya,Lesotho,Liberia,Libya,Madagascar,Malawi,Mali,Mauritania,Mauritius,Morocco,Mozambique,Namibia,Niger,Nigeria,Rwanda,Sao Tome and Principe,Senegal,Seychelles,Sierra Leone,Somalia,South Africa,Swaziland,Tanzania,Togo,Tunisia,Uganda,Zambia,Zimbabwe,Antigua and Barbuda,Bahamas,Barbados,Belize,Canada,Costa Rica,Dominica,Dominican Republic,El Salvador,Grenada,Guatemala,Haiti,Honduras,Jamaica,Mexico,Nicaragua,Panama,Saint Kitts and Nevis,Saint Lucia,Saint Vincent and the Grenadines,Trinidad and Tobago,United States,Argentina,Bolivia,Brazil,Chile,Colombia,Ecuador,Guyana,Paraguay,Peru,Suriname,Uruguay,Venezuela,Australia,Fiji,Kiribati,Marshall Islands,Micronesia,Nauru,New Zealand,Palau,Papua New Guinea,Samoa,Solomon Islands,Tonga,Tuvalu,Vanuatu	STM32CubeProg	Active	STM32CubeProgrammer software for all STM32	STM32 programmers	ST	STM32CubeProg Description: STM32CubeProgrammer software for all STM32

Product overview

Description

All features

Something went wrong with the server request. Please try again in a few moments.

Project Title:

Project Description:

Application:

End Application:

Nature of Business:

Military Related:

Country/Region where the Software will be used:

Comment:

Request for software successfully submitted. The approval process may take up to 48 hours. After you have been approved, you should receive a link to the requested software via email.

Get Software

Please note, that cookies should be enabled for successful downloading the software.

Something went wrong with the server request. Please try again in a few moments.

First Name:

Last Name:

E-mail address:

All tools & software

Software development tools

STM32CubeIDE

STM32CubeMX

STM32CubeProg