TrustCore SDK

Comprehensive security framework for IoT solutions

DigiCert® TrustCore SDK provides a complete security framework for IoT applications, real-time embedded software, and safety-critical systems. With post-quantum cryptography support through ML-KEM and ML-DSA algorithms, TrustCore SDK helps you build secure, compliant, and future-proof solutions.

Key capabilities

• Establish strong device identity with quantum-resistant authentication options.
• Safeguard sensitive information at rest and in transit.
• Enable secure communications with TLS 1.2/1.3, SSH, and MQTT.
• Streamline the cryptographic key lifecycle through automated management.
• Meet FIPS 140-2/3 certification requirements with built-in compliance support.
• PQC-ready with support for ML-DSA, SLH-DSA, ML-KEM, and TLS 1.3.

Open-source availability

With TrustCore SDK version v9.0.0, DigiCert open sources a 15‑year, production‑hardened security stack built for the reality that device security is no longer optional. The source code is publicly available, providing greater transparency and enabling customers and partners to review, build, and contribute to the SDK while continuing to use DigiCert‑supported releases.

The open‑source TrustCore SDK v9.0.0 is available on GitHub.

Unified module architecture

Modular, powerful, and ready to scale. Each TrustCore SDK module is tailored for a specific function.

• NanoSSH High-performance SSH solution optimized for remote access and secure file transfers, supporting X.509v3 certificate-based authentication.
• NanoTAP Simplifies integration and management of Hardware Security Modules (HSMs) and TPMs.
• NanoSSL Light-weight SSL/TLS solution designed for resource-constrained devices, offering TLS 1.3 support and robust certificate management capabilities.
• NanoCrypto Delivers comprehensive cryptographic capabilities for embedded systems with limited resources and support for the latest quantum-safe algorithms.
• NanoSec IP layer security leveraging Internet Key Exchange (IKE) for IPsec, ensuring encrypted and authenticated IP communications.
• OpenSSL Connector Compatibility layer for applications using OpenSSL APIs, enabling seamless integration with NanoSSL. Supports diverse OpenSSL versions.
• NanoEAP Robust EAP implementation supporting both passthrough and standalone modes for efficient authentication.
• NanoCAP Crypto platform tailored for global export/import controls, with pluggable engines and hardware acceleration options.
• NanoSMP Security Module Plugin for TPM 2.0/1.2, offering simplified integration via the NanoTAP interface.

Why TrustCore SDK?

TrustCore SDK has been purpose-built with an emphasis on security and seamless integration. This ensures that every layer of device interactions is secure, consistent, and compliant with the latest security practices.

• Post-quantum cryptography protects against emerging threats.
• Support for over 70 chipsets and 30 operating systems.
• Adaptable to various programming languages and environments.
• Pre-validated security components minimize development effort.
• Simplifies meeting global security standards and export controls.

Navigating FIPS 140-2 and 140-3 with TrustCore SDK

TrustCore SDK allows you to increase security standards for IoT applications, real-time embedded software, and safety-critical systems to both FIPS 140-2 and FIPS 140-3 Level 1 certifications. See Understand FIPS 140-2 and 140-3 to learn more.

Getting started with TrustCore SDK

Start working with TrustCore SDK, follow these foundational steps to guide your integration process:

• Visit the Get started guide.
• Get familiar with the TrustCore SDK modules that match your security requirements.
• Use our flexible APIs for seamless implementation.
• Explore documentation.