1/6 data brief october 2004 for further information contact your local st sales office. ST19WP18-TPM-B trusted platform module (tpm) with tcg software stack 6 product features � single-chip trusted platform module (tpm) � embedded tpm 1.2 firmware � tpm driver for bios and windows tm 2000/xp � tcg software stack (tss) (1) � 33-mhz low pin count (lpc) interface v1.1 � compliant with tcg pc client specific tpm implementation specification (tis) v1.2 � dedicated lpc communication buffer for tpm commands handling optimization � trusted computing group (tcg) (2) v1.1b / v1.2 configurable mode of operations � architecture based on st19w secure smartcard ic platform: ? 1088-bit modular arithmetic processor providing full support for asymmetric operations ? hardware-based sha-1 accelerator enabling bios related fast hash operations ? fips 140-2 compliant random number generator ? active security sensors � eeprom-based nvm including 128 bytes of otp area for production configuration ? highly reliable cmos eeprom submicron technology ? 10 year data retention ? 500,000 erase/write cycle endurance ? storage for up to 30 keys � 5 software-controlled general purpose i/o (gpio) pins � power saving mode � available in recommended tcg pc client 1.2 compatible tssop28 � 3.3v 10% power supply voltage � 0-70 o c operating temperature range figure 1. delivery form 1. solution bundles an integrated core tcg soft- ware stack from ntru cryptosystems. any marks and brands contained herein are the prop- erty of their respective owners. 2. tcg website: http://www.trustedcomputing- group.org function speed (1) 1. typical values, independent of external clock fre- quency and supply voltage. rsa 1024 bits signature with crt (1) 62 ms rsa 1024 bits signature without crt (2) 2. crt: chinese remainder theorem. 206 ms rsa 1024 bits verification (e= ? $10001 ? )4 ms rsa 1024 bits key generation 1.8 s rsa 2048 bits signature with crt (2) 416 ms rsa 2048 bits verification (e= ? $10001 ? ) 66 ms tssop28
ST19WP18-TPM-B 2/6 general description the ST19WP18-TPM-B is a cost effective trusted platform module (tpm) solution. the st19wp18- tpm-b is designed to provide pc platforms with enhanced security and integrity mechanisms as defined by trusted computing group standards. the product provides full support of tcg v1.1b as well as tcg v1.2 specifications. ST19WP18-TPM-B is based on the st19wp18 silicon product. the st19wp18 is driven from the smartcard ic st19w platform. it is manufactured using the ad- vanced highly reliable stmicroelectronics cmos eeprom technology. the st19wp18 has an 8-bit cpu architecture and includes the following on-chip memories: user rom, user ram and eeprom with state of the art security features. rom, ram and eep- rom memories can be configured into partitions with customized access rules. the st19wp18 also includes a modular arithme- tic processor (map). the 1088 bits architecture of this cryptographic engine allows processing of modular multiplication, squaring and additional calculations up to 2176 bit operands. the modular arithmetic processor is designed to speed up cryptographic calculations using public key algorithms. the secure hash accelerator allows fast sha-1 computation especially well suited for bios hash operations during early boot stages. the st19wp18 has been specially designed in line with tcg pc client specific tpm implemen- tation specification (tis) referring to intel ? s lpc specification revision 1.0. figure 2. st19wp18 block diagram internal bus memory access firewall i/o 1 x serial interface gnd 8 bit cpu 3 x 8 bit timers crc module lclk clock generator module st rom, map and des firewall ram user rom st rom and crypto libraries edes accelerator map 1088 bits 537 vps gun a & gun b security admin. reset eeprom sha module 5 x general purpose i/os interface gpi02 ram 2k lpc interface lframe lpcpd lad3 lad2 lad1 lad0 pp serirq gpi03 gpi04 gpi05 gpi01
3/6 ST19WP18-TPM-B software description embedded tpm firmware the st19wp18 includes fully compliant tcg v1.1b tpm firmware which supports features like cryptographic key generation, integrity metrics and secure storage. in addition, the product is tcg v1.2 ready and provides support for func- tions such as delegation, transport session and locality. this tcg v1.1b / v1.2 compliant tpm firmware uses an optimized and flexible software architec- ture allowing the integration of trusted computing framework enhancements or implementation of dedicated functions. software stack to enable its integration on pc motherboards, ST19WP18-TPM-B provides bios and microsoft windows tm drivers. memory absent (ma) and memory present (mp) bios drivers source codes are made available for easy integration into compound or integrated bio- ses. both provide means for bios to access tpm resources in memory - less or post bios system environments. in addition a windows tm 2000/xp driver is also supplied in the form of a tpm device driver (tdd) running in kernel mode and a tpm device driver library (tddl) running in user mode. please contact st for a complete list of supported operating systems. the ST19WP18-TPM-B also includes a tcg trusted software stack (tss) fully compliant with tcg specification standard version 1.1 interface and security services for application that relies on st tpm. the stack, enhanced with strong, standards com- pliant cryptographic libraries, is composed of two dedicated components: the tcg service provider (tsp) and the tcg core services (tcs). the overall software stack of the st19wp18- tpm-b then comprises the following modules: ? bios memory absent driver (ma) ? bios memory present driver (mp) ? tpm device driver (tdd) ? tpm device driver library (tddl) ? tss core services (tcs) ? tss service provider (tsp)
ST19WP18-TPM-B 4/6 the ST19WP18-TPM-B bring oems an optimized tpm solution for their pc platforms. figure 3. software layers application 1 application 3 application 2 ms capi csp pkcs# 11 csp cryptographic infrastructure interface tsp interface os user mode tss service provider - tsp tss core services - tcs tpm device driver library - tddl tcs interface tddl interface tpm device driver - tdd os kernel mode hardware & firmware 535 memory absent driver - mad subsystems included in the ST19WP18-TPM-B solution tpm bios drivers memory present driver - mpd st19wp18 + embedded tpm firmware
5/6 ST19WP18-TPM-B pin and signal overview figure 4. pinout description table 1. signal description signal type description lad[3:0] bidir multiplexed command, address and data (see lpc interface spec) lpcpd# input power down indicates that the peripheral should prepare for power to be removed from the lpc i/f devices. actual power removal is system dependent (see lpc inter- face spec) lclk input clock same 33mhz clock as pci clock on the host. same clock phase with typical pci skew. (see lpc interface spec) lframe# input frame indicates start of a new cycle, termination of broken cycle (see lpc interface spec) lreset# input reset same as pci reset on the host (see lpc interface spec) serirq bidir serialized irq is used by tpm to handle interrupt support (see lpc interface spec) gpio5/clkrun# bidir general purpose io , weak internal pull-up fully configurable by software clkrun# same as pci clkrun#. only needed by peripherals that need dma or bus mastering in a system that can stop the pci bus (generally in mobile systems) pp input physical presence , active high, internal pull-down. used to indicate physical pres- ence to the tpm gpio[4:1] bidir general purpose ios with weak internal pull-up fully configurable by software io bidir bidirectional io iso 7816-2 compliant serial port vps input 3.3v power supply . vps has to be connected to 3.3v dc power rail supplied by the motherboard gnd input zero volts ground reference. gnd has to be connected to the main mother board ground 1 2 3 4 5 6 7 8 9 10 11 12 13 14 28 27 26 25 24 23 22 21 20 19 18 17 16 15 gpio1 gpio2 io gnd nc gpio3 pp nc gpio4 vps gnd nc nc nc lpcpd# serirq lad0 nc vps lad1 lframe# lclk lad2 nc gpio5/clkrun# lreset# gnd lad3 tssop28
ST19WP18-TPM-B 6/6 information furnished is believed to be accurate and reliable. however, stmicroelectronics assumes no responsibility for the co nsequences of use of such information nor for any infringement of patents or other rights of third parties which may result from its use. no license is granted by implication or otherwise under any patent or patent rights of stmicroelectronics. specifications mentioned in this publicati on are subject to change without notice. this publication supersedes and replaces all information previously supplied. stmicroelectronics prod ucts are not authorized for use as critical components in life support devices or systems without express written approval of stmicroelectro nics. the st logo is a registered trademark of stmicroelectronics. all other names are the property of their respective owners ? 2004 stmicroelectronics - all rights reserved stmicroelectronics group of companies australia - belgium - brazil - canada - china - czech republic - finland - france - germany - hong kong - india - israel - ital y - japan - malaysia - malta - morocco - singapore - spain - sweden - switzerland - united kingdom - united states of america www.st.com
|
