Winbond W77Q Secure Flash secures ACVTS certification
Winbond, a supplier of Semiconductor memory solutions, has announced that their TrustME W77Q Secure Flash has received FIPS 140-3 Automated Cryptographic Validation Test System (ACVTS) certification.
FIPS (Federal Information Processing Standard) 140 is a series of security standards published by the US government that specify security requirements for the evaluation of cryptographic modules. This standard is applicable to all agencies using cryptographic-based security systems to protect sensitive information in computer and telecommunication systems. FIPS 140-3 is the latest FIPS 140 standard and is thoroughly aligned with the international ISO/IEC standards.
FIPS 140-3 ACVTS is the NIST Cryptographic Algorithm Validation Program which provides validation testing of approved cryptographic algorithms and their individual components.
An algorithm implementation successfully tested by a lab and validated by NIST is added to an appropriate validation list, which identifies the vendor, implementation, operational environment, validation date and algorithm details.
This certification ensures that the cryptographic algorithms being used have been implemented as per their respective standards and by passing FIPS 140-3 ACVTS and being listed on CAVP list, W77Q is proven to be a NIST-recommended cryptographic algorithms and their individual components.
W77Q’s security offers an internal hardware HASH function (SHA-256) that is used for the cryptographic encryption of several functions, including:
- Communication channels
- Cryptographic read and write locks
- Cryptographic protection of data integrity,
- Cryptographic over-the-air (OTA) firmware updates
- Root of Trust functions.
TrustME W77Q Secure Flash has previously obtained Common Criteria EAL2 and ISO 26262 ASIL-C Ready certifications from SGS Brightsight and SGS-TÜV Saar, respectively. Now, with FIPS 140-3 ACVTS validation, it offers customers much greater confidence when choosing W77Q as their security solution – especially in 5G IoT applications, where most of the devices will include at least one cryptographic component requiring cybersecurity.