1.
What is the TrustedFlash security platform?
The TrustedFlash secure platform for flash memory cards, USB flash
drives and SIM cards provides both portable and scalable protection
for digital content and applications. Created by SanDisk
Corporation, the TrustedFlash security platform extends the trusted
environment to include removable memory, providing the security
demanded by rights holders, application developers and
content/service providers. At the same time, it offers users the
freedom to easily move and access their protected content among
authorized TrustedFlash-enabled devices within an operator's
network/environment, provides more secure storage space, and lets
users enjoy multiple services and applications on a single flash
memory device. TrustedFlash technology is the heart of the
TrustedFlash security platform. It is built on international
standards for cryptography and authentication, and can support a
variety of digital rights management (DRM) formats.
Back to top
2.
How does TrustedFlash security technology work?
TrustedFlash security technology implements a cryptographic engine
and a tamper-resistant core that are installed on the flash card,
USB drive, SIM card or embedded flash drive (EFD). The engine
encrypts files that are protected by TrustedFlash security
technology, while the keys to unlock these files are placed in the
core. This encryption is, in effect, an envelope surrounding the
individual file. The file itself can be in any format, independent
of TrustedFlash security technology. The TrustedFlash security
specification defines the additional application programming
interface (API) for the secured commands.
Back to top
3.
What are the benefits of the TrustedFlash security platform
?
The TrustedFlash security platform is the basis for a secure and
portable ecosystem for digital content distribution and a better
user experience. It brings major benefits to users, rights holders,
mobile network operators, application developers and
service/content providers and handset manufacturers:
- Protects digital content and services in many types of flash
devices, such as Secure Digital (SD™) cards, microSD™ cards,
high-capacity SIM cards, USB flash drives and EFDs.
- Supports multiple digital rights management (DRM) formats on
flash memory, allowing users to acquire content from multiple
sources and enjoy it on multiple devices (within an operator's
network) such as mobile phones, personal computers, handheld video
game players and portable media players.
- Extends the trusted environment to include removable memory,
providing the scalable protection demanded by rights holders,
mobile network operators, application developers and
service/content providers.
- Enables user privacy, and allows for expanding secure memory
through removable cards.
- Opens new business opportunities for service/content providers,
application developers as well as manufacturers of mobile devices
and portable media players.
- Provides a scalable secure memory platform and ecosystem for
emerging markets such as digital content distribution, mobile video
and mobile TV, navigation, games, e-commerce and mobile enterprise
applications.
- Delivers a virtually seamless user experience.
Back to top
4. Does anybody else have such a
security solution for mobile content and services?
As of today, only SanDisk offers the TrustedFlash security platform
and TrustedFlash-enabled memory cards such as the Mobile Premier
card. However, SanDisk is in the process of establishing the
TrustedFlash Forum to enable other partners to license the
technology for development of their products and to benefit from
the support of members of the TrustedFlash Forum ecosystem.
Back to top
5. Is
it compatible with products from other
manufacturers?
The TrustedFlash security platform can be integrated with any flash
memory cards via an application programming interface (API). Any
cards that implement TrustedFlash security technology are backward
compatible with their original card specification. For instance,
the SanDisk Mobile Premier card is fully compatible with the
microSD memory card.
Back to top
6.
What does TrustedFlash security technology require to be
implemented? Can it be used on any mobile device?
TrustedFlash security technology does not require any hardware
changes to the host. All it requires is that software be installed
on the host so that the TrustedFlash-enabled storage device can
"talk" to the cryptographic engine. An agent can be loaded by the
device's manufacturer to enable this functionality.
Back to top
7. Is
"TrustedFlash" a product or a technology?
TrustedFlash is SanDisk's brand of security technology based on
industry-standard cryptography and a tamper-resistant memory core
that is used within the TrustedFlash security platform. The
TrustedFlash security platform can be integrated on a wide range of
removable flash memory devices including USB flash drives (UFD), SD
cards, miniSD™ cards, microSD™ cards, memory sticks, MegaSIM cards,
and iNAND™ cards.
Back to top
8.
When will TrustedFlash-enabled cards be available?
The SanDisk Mobile Premier card, a microSD compatible card,
supports TrustedFlash security technology and is available today.
Other TrustedFlash-enabled cards on the market currently include
pre-loaded digital video and music offerings from major
entertainment and mobile network organizations. What are the key
applications for the TrustedFlash security platform? Major
applications that can benefit from the TrustedFlash security
platform:
- Digital content (music, games, movies) distribution to mobile
handsets
- MP3 and PMP devices
- CAS applications in mobile TV devices
- Map distribution and update in GPS devices
- PC software application distribution on UFDs
- Mobile software applications on uSD, M2 cards.
- E-commerce and health care applications
Back to top
9.
Why has SanDisk developed the TrustedFlash security
platform?
The TrustedFlash security platform was developed to overcome what
SanDisk considers the biggest problem with the secure distribution
of digital content: it is always locked to the device on which it
was first loaded. For example, paid-for content such as music or
video that it is stored on a removable card for use on a mobile
phone cannot be played on any of the user's other devices.
TrustedFlash security technology unlocks content by allowing it to
be saved securely on the TrustedFlash-enabled card rather than on
the device. This gives users the freedom to enjoy their content on
any of their TrustedFlash-enabled devices within an operator's
network. In discussions with content owners, mobile network
operators, handset manufacturers and other companies that are
involved with the creation and delivery of digital content, we saw
a need for an ecosystem that would allow secure, premium digital
content portability on a variety of devices to enhance the user
experience with seamless portability. The TrustedFlash security
platform is flexible enough to work with existing DRM formats,
enabling users to enjoy their favorite content and service from
multiple providers.
Back to top
10.
How easy it is to remove and add the Mobile Premier microSD
cards?
The very small microSD card has been widely adopted by phone
manufacturers. The Mobile Premier brand that is available in this
form factor, as well as other form factors within the Mobile
Premier family, is easy to insert and remove in slots available on
many handsets. An adapter is available for SD card hosts.
Back to top
11.
Who will be the new customers for TrustedFlash-enabled
cards?
The TrustedFlash security platform is aimed at content providers
(record labels, movie studios, game producers, map distributors
etc.), service providers such as mobile network operators, handset
manufacturers, GPS manufacturers, CAS vendors, and MP3/4, game and
other portable media player manufacturers. The TrustedFlash-enabled
card will also be sold in retail stores to enable consumers to
upgrades their card capacity on their own.
Back to top
12.
What are the most important technical features of the TrustedFlash
security technology?
TrustedFlash security technology enables secure storage access
through authentication and secure key sessions. Content is
encrypted using advanced crypto engines with "on the fly"
encryption capabilities. A hidden partition is visible only to
authenticated applications. A DRM-agnostic solution enables rights
objects to be saved along with the DRM application on the removable
storage card itself, rather than on the device, for secure content
portability. A secure execution environment is ideal for
applications such as customized card applications,
install/uninstall/browse applications such as one time password
(OTP), DRM, conditional access (CAS), personal video recorder (PVR)
and many more.
Back to top
13.
How much will a consumer pay for a TrustedFlash-enabled
card?
The consumer price depends on how comprehensive the offering is. In
some cases, the card will come with preloaded content, and
therefore its price will reflect the value of the content. In other
cases, the card will be sold with services, the cost of which could
either be passed on to the consumer or subsidized by the service
provider who could use the subsidized services to tempt consumers
to purchase additional services.
Back to top
14.
Is the TrustedFlash security platform commercially available
yet?
Yes. Bouygues Telecom offers TrustedFlash-enabled cards on three of
its handsets. Using these cards with the Bouygues i-mode™ service
network, subscribers can purchase, download, securely store, play
back and share premium content. One of these handsets is sold with
a SanDisk Mobile Premier (TrustedFlash-enabled microSD™)
card.
Back to
top
15.
What security standards does TrustedFlash security technology
support?
TrustedFlash security technology supports both symmetric and
asymmetric (PKI) algorithms and enables secure communications
protocols to the memory card. SanDisk expects the TrustedFlash
security platform to be FIPS certified. It includes an advanced
cryptographic engine to provide a much higher level of security
than has previously existed on memory cards.
Back to top
16.
Do Sansa® MP3 players support the TrustedFlash
platform?
Yes. This support enables SanDisk to provide premium content and
services to users of Sansa MP3 players.
Back to top
17.
Will there be a second source for TrustedFlash security technology?
What is your plan for licensing this technology?
Today, only SanDisk can produce TrustedFlash security technology.
However, we are in the process of establishing a TrustedFlash Forum
to enable our partners to license the TrustedFlash security
platform and manufacture TrustedFlash-enabled cards.
Back to top
18.
TrustedFlash security technology was launched in September 2005,
when it was made available with SanDisk's miniSD™, microSD™ and SD™
cards, as well as with the gruvi™ card with preloaded content.
Subsequently, SanDisk issued press releases re Mobile Premier card
(TrustedFlash-enabled card) adoption by Bouygues Telecom and Yahoo!
Music and cooperation with Microsoft on USB drives and with the
i-mode Alliance. Despite these promising signs, TrustedFlash
security platform uptake has not been widespread. How do you plan
to change this now?
The digital content landscape has changed drastically since 2005.
There is an ever-increasing amount and diversity of digital content
on the web, and it is being shared with accelerating proliferation
through programs that let users download it for free. Content
distributors, service providers and rights owners are increasingly
frustrated by their inability to secure this content. The keys to
our success are twofold: securing premium content; cooperation
among all members of the ecosystem involved in the creation,
production and distribution of digital content. SanDisk is about to
launch a vibrant TrustedFlash Forum that can bring about the
realization of both of these goals.
Back to top
19.
What exactly is the TrustedFlash Forum?
The TrustedFlash™ Forum will facilitate the exchange of ideas and
information among companies with a shared interest in creating a
comprehensive ecosystem to securely distribute digital content and
applications on flash memory devices. The Forum will encourage
users to seek out TrustedFlash-enabled flash storage media to
benefit from seamless portability of premium content on their
TrustedFlash-enabled devices. For more information about the forum
or TrustedFlash security technology please contact us at info@trustedflashforum.com.
Back to top
20.
Is the TrustedFlash security technology you announced in September
2005 the same TrustedFlash security technology that you're talking
about now? If not, what are the differences?
The technology is essentially the same, but the platform differs.
It now has the support of an ecosystem of content/service
providers, handset manufacturers, application developers and others
involved in the creation and distribution of mobile digital
content. They are determined to secure premium digital content and
services, while at the same time lift restrictions formerly imposed
on users by enabling them to easily access and share their content
among all of their TrustedFlash-enabled devices.
Back to top
21.
How does the TrustedFlash platform differ from other security
solutions for digital content currently available on the
market?
In many ways:
- Provides manufactures with form factor-independent security,
based on TrustedFlash technology, that can be used with existing
hardware for implementation in popular storage solutions.
- Provides premium content providers and users with a platform
that gains in strength in direct proportion to the strength of its
ecosystem members.
- Enables a data-centric approach to security rather than
device-centric approach by protecting the digital data on the
storage device, rather than to protecting the device from the
environment.
- Enables secure applications and services to be loaded directly
from the storage device.
- Lets service providers distribute secure content more quickly
through removable storage, rather than preload it on handsets, GPS,
etc.
- Supports a variety of business models for secure content
delivery such as preloaded content on removable storage, downloaded
content from the Internet and sideloaded content from a computer to
removable storage.
Back to top
22.
What will motivate users to purchase TrustedFlash-enabled devices
and storage when they can simply continue to download content free
from the Internet?
While some content is accessible for free via the web, most
rights-protected content, as well as most premium, on-demand, and
event-based content is not free. Many popular applications also
require security.
Back to top