Microchip senior embedded solutions engineer Tim Scherr explains how the company’s embedded security portfolio supports secure boot, secure key storage and firmware-over-the-air (FOTA) updates for connected devices that must comply with the upcoming EU Cyber Resilience Act when its main obligations apply from December 2027. At SPS in Nuremberg he shows how device identity is anchored in a secure element “birth certificate”, so that firmware images and configuration updates can be authenticated and authorized in the field instead of being fixed at production time. More on Microchip’s Trust Platform for secure elements and key provisioning is available at https://www.microchip.com/en-us/products/security/trust-platform
—
HDMI® Technology is the foundation for the worldwide ecosystem of HDMI-connected devices; integrated with displays, set-top boxes, laptops, audio video receivers and other product types. Because of this global usage, manufacturers, resellers, integrators and consumers must be assured that their HDMI® products work seamlessly together and deliver the best possible performance by sourcing products from licensed HDMI Adopters or authorized resellers. For HDMI Cables, consumers can look for the official HDMI® Cable Certification Labels on packaging. Innovation continues with the latest HDMI 2.2 Specification that supports higher 96Gbps bandwidth and next-gen HDMI Fixed Rate Link technology to provide optimal audio and video for a wide range of device applications. Higher resolutions and refresh rates are supported, including up to 12K@120 and 16K@60. Additionally, more high-quality options are supported, including uncompressed full chroma formats such as 8K@60/4:4:4 and 4K@240/4:4:4 at 10-bit and 12-bit color.
—
The conversation walks through a typical embedded design flow, from early prototyping on development boards through validation and mass production, and highlights where hardware security blocks and secure elements are inserted into the architecture. By integrating secure key provisioning and certificate management early in the design, developers can align with CRA expectations around secure-by-design defaults, authenticated software, signed manifests, lifecycle vulnerability handling and field-updatable firmware, instead of bolting security on late in the project. This approach also helps structure internal processes for risk assessment, documentation and incident response that the regulation will require over the full product lifetime.
Tim then details the Trust Platform tiers Microchip offers for provisioning and lifecycle management of secure elements: pre-provisioned Trust&GO devices for rapid network onboarding, TrustFLEX devices with pre-configured authentication use cases such as secure boot, OTA verification, token and certificate authentication and hardware attestation, and fully customizable TrustCUSTOM secure elements for bespoke threat models and key hierarchies. He also mentions TrustMANAGER for in-field credential rotation and remote key management, which works with cloud PKI and Microchip’s secure manufacturing infrastructure to support FOTA and cryptographic updates at fleet scale.
Throughout the video he addresses the concern many European manufacturers have about interpreting CRA requirements correctly and shows that engineering teams can already begin aligning their embedded products with future cybersecurity obligations. The key message is to treat secure device identity, cryptographic key management, provisioning infrastructure and robust update mechanisms as core design parameters rather than optional add-ons, giving OEMs a concrete path toward CRA-ready connected products that remain maintainable and auditable over their entire service life.
I’m publishing about 90+ videos from Embedded World North America 2025, I upload about 4 videos per day at 5AM/11AM/5PM/11PM CET/EST. Join https://www.youtube.com/charbax/join for Early Access to all 90 videos (once they’re all queued in next few days) Check out all my Embedded World North America videos in my Embedded World playlist here: https://www.youtube.com/playlist?list=PL7xXqJFxvYvjgUpdNMBkGzEWU6YVxR8Ga
This video was filmed using the DJI Pocket 3 ($669 at https://amzn.to/4aMpKIC using the dual wireless DJI Mic 2 microphones with the DJI lapel microphone https://amzn.to/3XIj3l8 ), watch all my DJI Pocket 3 videos here https://www.youtube.com/playlist?list=PL7xXqJFxvYvhDlWIAxm_pR9dp7ArSkhKK
Click the “Super Thanks” button below the video to send a highlighted comment under the video! Brands I film are welcome to support my work in this way 😁
Check out my video with Daylight Computer about their revolutionary Sunlight Readable Transflective LCD Display for Healthy Learning: https://www.youtube.com/watch?v=U98RuxkFDYY
