This thread has been locked.

If you have a related question, please click the "Ask a related question" button in the top right corner. The newly created question will be automatically linked to this question.

TMS320F2800157: Cyber Resilience Act

Part Number: TMS320F2800157
Other Parts Discussed in Thread: C2000WARE

I'm working with the TMS320F2800157. Is this chip compliant to CRA?
CRA:https://www.ti.com/technologies/security/cyber-resilience-act.html
Does this chip require an external secure element for secure key storage?
Also, are there any sample projects that could be implemented for secure boot and secure firmware updates?

  • Hello,

    Please allow another day for me to formulate my response. Appreciate your patience!

    Best Regards,

    Allison

  • Of course, I'm waiting for your answer.

  • Hi Yılmaz,

    At this time we cannot provide device-specific CRA certification; however, TI is actively preparing for CRA implementation:

    • TI has both a vulnerability management and certified product cybersecurity development process in place
    • TI is actively participating in working groups creating harmonized standards for the CRA
    • TI's products are designed to help customers build secure end equipment to comply with relevant regulations, including the European CRA

    It is important to note that devices in our portfolio such as F280015x include key security enablers such as secure boot (MAC-based), device identity (unique ID), debug security (JTAG lock with password), cryptographic acceleration (AES 128/192/256), and software IP protection. While these features support security requirements, specific CRA compliance certification requirements are is still under analysis.

    The F280015x does not require an external secure element for secure key storage. The device has built-in security features:

    • Dual Code Security Module (DCSM): Prevents access to on-chip secure memories and resources
    • Secure Flash Boot: Supports boot mode number 10 (Secure Flash) with CMAC-based authentication
    • AES Cryptographic Acceleration: Hardware support for AES encryption
    • Unique Device ID: For device identification and authentication
    • Password-Protected Debug Access: JTAG lock with password protection

    There are some related sample projects available in C2000Ware that can be used as reference for F280015x:

    1. Secure Boot Examples for F28P65x 
    2. AES CMAC Authentication Examples on F28003x, F28P55x, F28P65x
    3. Secure Flash Boot Example on F2838x

    Resources:

    1. App Report: Secure BOOT on C2000 Device
      1. Discusses secure flash boot feature on F2838x (applicable concepts for F280015x)
      2. Covers CMAS authentication algorithm implementation
    2. App Report: C2000 Software Controlled Firmware Update Process
      1. Described software-controlled firmware update process
      2. Shows how to implement FW updates without manual boot mode selection
      3. Applicable directly to F28004x and F280015x
    3. C2000Ware Flash Kernel Examples
      1. {C2000Ware}\driverlib\f280015x\examples\flashCAN Flash kernel example
        1. SCI Flash kernel example
        2. CAN Flash kernel example
    4. F280015x Boot Rom source code
      1. In C2000Ware: {C2000Ware}\libraries\boot_rom\f280015x\rev1\rom_sources\F280015x_ROM\bootROM\source
      2. Crypto libraries: {C2000Ware}\libraries\security\crypto\c28
    5. C2000 Bootloader Guide

    Best Regards,

    Allison