Microchip Technology has upgraded its TrustMANAGER platform to help device makers meet increasing global cybersecurity demands, including compliance with the European Union’s Cyber Resilience Act (CRA). The enhancements focus on two key areas: secure firmware-over-the-air (FOTA) updates and remote cryptographic key and certificate management.
The growing threat of outdated or vulnerable firmware in connected devices has prompted regulators to impose stricter controls. The CRA, which applies to digital products sold in the EU from 2025, mandates proactive security measures throughout the product lifecycle. Microchip’s updated TrustMANAGER platform supports these requirements by enabling secure code signing, firmware distribution, and credential lifecycle management, all delivered remotely and at scale.
Built around the ECC608 secure element, TrustMANAGER uses Kudelski IoT’s keySTREAM™ SaaS for secure key storage, protection, and orchestration. This allows OEMs to remotely authenticate devices and push real-time updates across their fleets, reducing reliance on manual updates and lowering infrastructure costs.
The platform is designed with interoperability in mind, aligning with ETSI EN 303 645 and ISA/IEC 62443 cybersecurity standards. Its development kit includes the WINCS02PC Wi-Fi® module, now certified under the EU’s Radio Equipment Directive (RED), which mandates network security, data protection, and anti-fraud safeguards for wireless devices entering the EU from August 2025.
TrustMANAGER is compatible with Microchip’s MPLAB® X IDE and supported by the CryptoAuth PRO development board, CryptoAuthLib software library, and Trust Platform Design Suite, making it easier for developers to integrate secure features across IoT and industrial designs.
