text.skipToContent text.skipToNavigation





Infineon Technologies has introduced the world’s first Trusted Platform Module (TPM) specifically for industrial applications.

The OPTIGA TPM SLM 9670 protects the integrity and identity of industrial PCs, servers, industrial controllers or edge gateways. It controls access to sensitive data in important positions in a connected, automated factory or other industrial setting as well as at the interface to the cloud.

The TPM SLM 9670 offers designers the high levels of flexibility needed to address innovative use cases in smart factories and Industry 4.0 while safeguarding system security. It offers:

  • Strong digital device ID and device authentication
  • Secured communication for data confidentiality and IP protection
  • Protection of the integrity of devices and software, including of software updates

The TPM acts as a vault for sensitive data in connected devices, and lowers the risk of data and production losses due to cyberattacks. The benefit to users is not limited to security, as TPMs also help to shorten time-to-market and reduce costs in industrial applications.

Through the use of the certified SLM 9670, manufacturers of industrial devices can comply with the requirements for hardware-based security of the higher security levels of IEC 62443, a series of international standards which defines the cybersecurity requirements for industrial automation and control systems.

Use of a discrete TPM such as the SLM 9670 reduces engineering and support costs. Custom-built security is expensive and requires constant maintenance. With the SLM 9670, OEMs can rely on Infineon’s decades of security expertise and the large team of security experts who continue to develop enhancements for it. TPMs can also help to reduce maintenance cost and effort by supporting remote maintenance and software update features in industrial devices.

The OPTIGA TPM SLM 9670 fully complies with the TPM 2.0 standard of the Trusted Computing Group, and is certified by an independent test laboratory in accordance with the Common Criteria standard for computer security certification, thus demonstrating a proven level of security.

Offering a service life of 20 years and on-chip support for firmware updates, the TPM handles the long-term security risks which might be encountered in an industrial environment.


The Main Building Blocks of a TPM

A TPM supports key and lifecycle management through provision of a unique endorsement key and a set of key hierarchies.

On-chip non-volatile memory can be used to securely store sensitive data such as certifi cates. An OPTIGA TPM is based on tamper-resistant hardware containing more than 50 security features including sensors and memory-encryption capabilities for robust protection of secrets. The TPM also features a secure tick counter which provides a trusted time source.

The OPTIGA TPM SLM 9670’s hardware is based on a tamper-resistant, secured microcontroller. It uses advanced hardware security technology, including sophisticated hardware co-processors and security peripherals, to provide strong protection against logical and physical attacks. The SLM 9670 is supplied as a 32-lead VQFN package.


  • Asymmetric cryptography capabilities:
    – ECC, ECC BN-256, ECC NIST P-256 RSA1024, RSA2048
  • Security certifi cates:
    – CC EAL4+ (Moderate)
    – FIPS 140-2 level 2
  • Symmetric cryptography capabilities
    – HMAC, SHA-1, SHA-256, AES
  • Qualifi ed to JEDEC JESD47 industrial standard
  • 6,962 bytes of free non-volatile memory
  • Key storage:
    – Up to three keys in volatile memory
    – Up to seven keys in non-volatile memory
    – Up to eight non-volatile memory counters
  • Random number generator conforming to NIST SP800-90A
  • Operating temperature range: -40°C to 105°C
  • Industrial systems
  • Smart factories
  • Industrial communications equipment
  • Programmable logic controllers
  • Industrial PCs




FTM Development Board

The IRIDIUM SLM 9670 TPM2.0 is an add-on board for Raspberry Pi, for integration into platform software such as the Linux or Win10IoT operating systems. It operates from a 3V or 1.8V power supply and supports plug-and-play operation via its 26-pin Raspberry Pi 1 header. It is compatible with Raspberry Pi 2 and 3.


FTM NA SideNav SubscribeTile EN
FTM NA Issue6-2019 SideNav Download