Skip to main content
ESCRYPT CycurHSM

Powerful security software for your ECU

Close-up of a computer circuit board featuring the CycurHSM, a hardware security module by ETAS, highlighting its role in embedded systems security.

ESCRYPT CycurHSM is a state-of-the-art and easy-to-integrate security solution developed in accordance with customer feedback and the experience gained by millions of vehicles already equipped with our software security stack. This modular solution provides extensive, customizable security mechanisms for a multitude of applications via a large number of open, standardized interfaces.

Contact us
Download flyer

Your benefits

Maximum flexibility

Fully configurable to address current and future customer-specific security challenges.

Reliable quality

Trusted solution, fulfilling highest automotive quality standards in millions of cars worldwide.

Fast and user-friendly

Continuously improved, easy-to-integrate, and based on a real-time operating system.

ESCRYPT CycurHSM: true automotive cybersecurity comes from within

ESCRYPT CycurHSM supports cyber resilience from the inside and across all use cases. It can be seamlessly integrated in automotive ECUs.

Features

  • Basic cryptographic services (AES, CMAC, hashing, key derivation, TRNG, PRNG)
  • Chinese algorithms
  • RSA (Digital Signature Algorithm)
  • ECDSA, ECBD, ECDH, ECDHE, EdDSA
  • Key exchange protocols (Diffie-Hellmann)
  • Certificate support (authenticity, parsing)

  • Fail-safe HSM update
  • Secure host flashing
  • HSM debug
  • HSM dump
  • Secure logging
  • HSM-controlled secure access (challenge response protocol)

  • Secure storage of data and keys
  • Support for systems with >100 keys (> 100)
  • Component protection (SHE+ support)
  • EEPROM emulation to extend flash endurance
  • HSM RAM mode
  • Multi-core support
  • Preemptive, parallel job processing
  • HSM lifecycle mode
  • Secure boot / Trusted boot / Authenticated boot and other boot modes
  • Trust anchor based on signatures
  • Bank swap SOTA support
  • Memory unlock (flash password protection)
  • Runtime manipulation detection

  • Qualified OEM-specific configurations
  • Support for OEM-specific protocols and functions
Close-up of a computer circuit board featuring the CycurHSM, a hardware security module by ETAS, highlighting its role in embedded systems security.

Get ready for the future with ESCRYPT CycurHSM 3.X

The evolution of the automotive industry towards the software-defined vehicle (SDV) and vehicle computers is transforming cybersecurity requirements. Many current approaches and software solutions are no longer able to support this shift in a safety-compliant and efficient way. We at ETAS provide a future-oriented hardware security module firmware: our latest generation of ESCRYPT CycurHSM 3.X is designed for all future SDV-related cybersecurity challenges.

Contact us

TÜV-certified

ESCRYPT CycurHSM 3.X is a TÜV-certified solution with support for crypto agility.

The CycurHSM, a hardware security module (HSM) from ETAS, protects identities, infrastructures, and data in the automotive world. It offers user-friendly features and future-proof embedded security.

ESCRYPT CycurHSM 3.X at a glance

  • Designed to meet new complex security and performance requirements
  • Supports all major security use cases and enables users to fully customize them
  • Supports the use of virtual instances in multi-core, multi-user, and multi-session environments
  • Enables post-quantum cryptography and optimizes performance and resource consumption
  • Can be integrated into all common AUTOSAR and non-AUTOSAR stacks
  • Compliant with ISO 26262 ASIL-D, Automotive SPICE, and ISO/SAE 21434

Version overview

Description CycurHSM 2.x CycurHSM 3.x
Description
ECU applications
CycurHSM 2.x
„Classic“ ECU applications only
(Control ECUs running single application in classic E/E vehicle architecture)
CycurHSM 3.x
„Classic“ ECU's, Zone Controller, Domain Controller, Vehicle Computer
(supporting new E/E vehicle architecture)
Description
Multi-application support
CycurHSM 2.x
Limited solution
(no strict separation, no support of related HW features)
CycurHSM 3.x
Full partitioning of multiple applications running in virtual machines or on multiple cores. Integration into any hypervisor environment.
Description
SecOC performance
CycurHSM 2.x
Acceptable for current OEM spec‘s by special modes
(solutions available to overcome HW constraints (bulk MAC, quick route,..))
CycurHSM 3.x
Tailored for future OEM spec‘s
(utilization of HW-CSP, bulk mode not required anymore, better safe CMAC)
(up to factor 10 performance increase possible depending on target)
Description
Secure boot performance
CycurHSM 2.x
Acceptable for current OEM spec‘s by special modes
CycurHSM 3.x
Tailored for future OEM spec‘s
(up to factor 10 performance increase possible depending on target)
Description
Functional safety
CycurHSM 2.x
for basic safety use cases only
(FFI, safe CMAC)
CycurHSM 3.x
for extended safety use cases
(FFI, improved safe CMAC, availability)
Description
CERT-C compliance
CycurHSM 2.x
Up to level L1, no plan for higher level
CycurHSM 3.x
Up to level 3 under consideration
Description
HW target support
CycurHSM 2.x
Low end to mid end automotive microcontrollers(function specific ECUs)
CycurHSM 3.x
Mid end to high end automotive microcontrollers(zonal, cross-domain ECUs) including future silicons
Description
PQC support
CycurHSM 2.x
Basic implementation only for limited use cases
(FW update verification,..)
CycurHSM 3.x
Optimized implementation utilizing HW accelerators for any use case
(up to factor 10 performance increase possible depending on target)

All news

Next events

Webinars

Explore our related use cases

Contact us

Do you have any questions? Feel free to send us a message. We will be more than happy to help.

Contact us today!


Contact form
Support hotline