Microchip Technology (Korea) has added new features to its TrustMANAGER platform, including firmware over-the-air (FOTA) updates, remote encryption key and digital certificate management, and secure code signing, supporting compliance with the latest cybersecurity regulations, including the European Cyber Resilience Act (CRA).

Global cybersecurity regulations are rapidly evolving as older firmware embedded in IoT devices is increasingly identified as a major security vulnerability.

In particular, CRA mandates security measures based on ETSI EN 303 645 and ISA/IEC 62443 for consumer devices sold in the EU market, and is expected to soon become a global standard.

Microchip has been providing encryption key and digital certificate storage and management by combining its existing ECC608 TrustMANAGER secure authentication IC with Kudelski keySTREAM™ SaaS, and has added FOTA functionality to help manufacturers securely distribute and update firmware remotely to quickly address vulnerabilities.

TrustMANAGER’s FOTA service automates large-scale IoT device firmware deployment without separate physical infrastructure, reducing operational costs and accelerating regulatory compliance.

The secure code signing feature ensures firmware integrity. Blocks illegal modifications and counterfeiting attacks.

“Device manufacturers must prioritize secure firmware updates, credential lifecycle management and efficient fleet deployment systems,” said Nuri Dagdebiren, vice president of Microchip’s Secure Products Group. “With the enhancements to the TrustMANAGER platform, customers can leverage a secure, scalable cybersecurity solution without relying on manual updates and separate security infrastructure.”

Additionally, the WINCS02PC Wi-Fi® module used in the TrustMANAGER development kit is Radio Equipment Directive (RED) certified, meeting RED cybersecurity requirements for all wireless devices sold in the EU from August 1, 2025.

For developer convenience, Microchip supports the MPLAB® X IDE-based development environment, CryptoAuth PRO EV89U05A board, and CryptoAuthLib library.

The Trust Platform Design (TPDS) document includes onboarding procedures, firmware examples, and AWS® integration guides to help you easily integrate the Arm® Cortex®-M4 based PIC32CX SG41 MCU with the WINCS02PC module.

The platform is designed for IoT device manufacturers and industrial automation suppliers, solving security, authentication, and fleet management challenges throughout the device lifecycle. Microchip plans to continue expanding the TrustMANAGER ecosystem to address evolving cybersecurity regulations and strengthen IoT security across a range of industries.

TrustMANAGER enhancements and purchasing information can be found on Microchip's official website and through domestic distributors.