ASRock TPM-SPI 2.0 Security Module

The ASRock TPM-SPI module is a dedicated hardware security component designed for ASRock motherboards with TPM-ready headers. This Trusted Platform Module provides hardware-based cryptographic key protection to secure your system at the firmware level.

Compliant to TPM Main Specification, Family "2.0", Level 00, Revision 01.16

Security Features

This TPM 2.0 module functions as a secure cryptoprocessor that integrates cryptographic keys directly into your hardware. It meets certification criteria for Intel TXT, Microsoft Windows, and Google Chromebook platforms, ensuring compatibility with enterprise and consumer security requirements. The module includes full personalization with an Endorsement Key (EK) and EK certificate for verified device identity.

Random number generation follows NIST SP800-90A standards, providing cryptographically secure random values for encryption operations. The module supports 24 Platform Configuration Registers (PCRs) using SHA-1 or SHA-256 hashing algorithms for secure boot verification and system integrity measurements.

Technical Specifications

• SPI interface
• Meeting Intel TXT, Microsoft Windows and Google Chromebook certification criteria for successful platform qualification
• Random Number Generator (RNG) according to NIST SP800-90A
• Full personalization with Endorsement Key (EK) and EK certificate
• Standard (-20..+85°C) and Enhanced temperature range (-40..+85°C)
• PG-VQFN-32-13 or PG-UQFN-32-1 package
• Pin compatible to OPTIGA™ TPM SLB 9670 TPM1.2 version
• Optimized for battery operated devices: low standby power consumption (typ. 110µA)
• 24 PCRs (SHA-1 or SHA-256)
• 7206 Byte free NV memory
• Up to 3 loaded sessions (TPM_PT_HR_LOADED_MIN)
• Up to 64 active sessions (TPM_PT_ACTIVE_SESSIONS_MAX)
• Up to 3 loaded transient Objects (TPM_PT_HR_TRANSIENT_MIN)
• Up to 7 loaded persistent Objects (TPM_PT_HR_PERSISTENT_MIN)
• Up to 8 NV counters
• Up to 1 kByte for command parameters and response parameters
• 1280 Byte I/O buffer

*Supported on X570 and newer platform motherboards.

Memory and Session Management

The module provides 7206 bytes of non-volatile memory for storing cryptographic keys and certificates. It supports up to 64 active sessions simultaneously, with capacity for 3 loaded sessions and 3 transient objects. Persistent object storage accommodates up to 7 loaded objects, while the 1280-byte I/O buffer handles command and response parameters up to 1 kByte.

Power Efficiency and Compatibility

With typical standby power consumption of just 110µA, this TPM module is optimized for systems requiring low power draw. The operating temperature range spans -20°C to +85°C in standard configuration, with enhanced versions supporting -40°C to +85°C. The module is pin-compatible with OPTIGA TPM SLB 9670 TPM 1.2 versions, allowing for straightforward upgrades.

Description

Specification

• Designed for: TPM Ready Asrock Motherboards
• Function: "The TPM is a secure cryptoprocessor, which is designed to secure hardware by integrating cryptographic keys"
• Interface: SPI interface
• Pin Dimension: 14-1pin
• Package Weight: 0.0200 kg
• Warranty: 3 Year Replacement Warranty