Security Module For Raspberry Pi

The easy way to protect your digital assets in the real world

  • Device Authentication
  • Data Encryption
  • Key Storage
  • Physical Tamper Detect

Volume pricing, custom features.

Zymbit security modules can be firmware customized for volumes starting at 1000 pieces. Hardware build variants, custom hardware and support for embedded designs is also available.

Contact us to discuss your specific needs.

Layered security with a hardware root of trust.

Simple API makes it easy to integrate Zymkey with your Linux host.

Embedded security modules for IoT

USB Stick

I2C Module

RPi compatible

SMT Chip

OEM features available

Strong security features.

Accessible through a simple API running on your host device.

Device Authentication
and Digital ID

Arrow-Two-Way-1

ZYMKEY enables remote attestation of host device hardware configuration.

  • Unique ID token created using host device specific measurements
  • Cryptographically derived ID token never exposed
  • Custom input factors available to OEMs
  • ID tokens bound to host permanently for manufacture, or temporarily for development
  • Changes in host configuration trigger local hard and API responses, policy dependent

Data Integrity
Encryption & Signing

Arrow-Two-Way-1

ZYMKEY's cryptographic engine uses some of the strongest commercially available cipher functions to encrypt, sign and authenticate data.

  • Strong cipher suite includes ECDSA, ECDH, AES-256, SHA256
  • AES-256 encrypt/decrypt data service
  • Integrates with TLS client-side certificates
  • TRNG - true random number generator, suitable seed for FIPS PUB 140-2, 140-3 DRNG.

Key Security
Generation & Storage

Arrow-Two-Way-1

ZYMKEY generates and stores key pairs in tamper resistant silicon to support a variety of secure services.

  • Multiple key slots, pre-defined and user available
  • Private keys never exposed outside of silicon
  • Fuseable keys available, policy dependent

Physical Tamper Detection

Arrow-Two-Way-1

ZYMKEY monitors the physical environment for symptoms of physical tampering .

  • Power rail monitor detects anomolies like brown-out events
  • Optional accelerometer detects shock and orientation change events
  • Optional perimeter integrity circuits detect breaks in user defined wire loops/mesh
  • Event reporting and response according to pre-defined policies

Real Time Clock

Arrow-Two-Way-1

ZYMKEY includes an optional battery-backed real time clock to support off grid applications.

  • 18-36 month operation, application dependent
  • RTC clock service, available to client applications
  • RTC/UTC anamoly alerts available with zymbit security services
  • 20ppm accuracy (standard). 5ppm accuracy (precision, temperature compensated)

3P Integrations

Arrow-Two-Way-1

ZYMKEY is easy to integrate with third party host-side applications such as:

  • LUKS file encryption
  • OpenSSL
  • AWS IoT
  • InfluxDB

Designed and manufactured in California.

Zymbit products are designed, manufactured and programmed in California in an ISO9001 facility.

Feature summary


ZYMKEY 2u ZYMKEY 3i
Communication

USB 2.0, 12Mbps

I2C (RPi compatible)
BUY NOW BUY NOW
DEVICE AUTHENTICATION
ZYMKEY 2u ZYMKEY 3i
Host hardware measurement
Cloudless binding of host and ID token
Host code measurement
Custom authentication factors
     
 DATA INTEGRITY
ZYMKEY 2u ZYMKEY 3i
 Secure data at rest with encrypt-data API service
 Secure file system with LUKS integration
 Encrypt data in flight with OpenSSL integration
     
PHYSICAL TAMPER DETECTION
ZYMKEY 2u ZYMKEY 3i
Perimeter integrity monitor  
Shock & orientation monitor
Power rail monitor
     
 OTHER FEATURES
ZYMKEY 2u ZYMKEY 3i
Real time clock
     
 CRYPTOGRAPHIC PRIMATIVES
ZYMKEY 2u ZYMKEY 3i
 TRNG (NIST SP800-22)
 ECC P-256
 SHA256 (FIPS 180-4)
 ECDSA (FIPS186-3)
 ECDH (FIPS SP800-56A)
 AES-256 (FIPS 197)
 TLS CIPHER SUITE EXAMPLES
ZYMKEY 2u ZYMKEY 3i
 AWS-IOT | TLS_ECDHE_ECDSA_AES256_SHA
 MS-AZURE | TLS_ECDHE_ECDSA_AES_128_GCM_SHA256_P256
     
BUY NOW BUY NOW

= standard feature
= OEM feature

Need help with your application?

We're here to answer your questions and find a solution that fits your needs.
Give us a call to discuss our standard products and OEM engineering services.

CONTACT

or call +1 805-618-1096