Making Modern Communication Standards Resilient for Critical and Sensitive Applications

Our IoTree-Modu­le “Secu­re Con­nec­ti­vi­ty” enab­les several IoT-App­li­ca­ti­ons with hig­hest secu­ri­ty and sui­ta­ble con­nec­ti­vi­ty. Secu­re con­nec­ti­vi­ty inclu­des data secu­ri­ty through mutu­al authen­ti­ca­ti­on and End-to-End encryp­ti­on inclu­ding key pro­vi­sio­ning. Your IoT-App­li­ca­ti­on and Use-Case deter­mi­na­tes the opti­mal com­mu­ni­ca­ti­on tech­no­lo­gy. Inde­pendent­ly from your use case, the secu­ri­ty chal­len­ges for IoT-App­li­ca­ti­ons are simi­lar:

  • Key Pro­vi­sio­ning of indi­vi­du­al keys for every device
  • Authen­ti­ca­ti­on of Device, User and Ser­vice­plat­form
  • End-to-End encryp­ti­on from your device to your ser­vice­plat­form
  • Updates over the Air (OTA/FOTA) for long­time secu­ri­ty

IoTree — Key Provisioning and Management

To gua­ran­tee a sus­tainab­le IoT-eco­sys­tem, devices need to be equip­ped with device-spe­ci­fic keys or cer­ti­fi­ca­tes. Such a trust anchor is fun­da­ment­al­ly important to authen­ti­ca­te and pro­tect their inter­faces. Pro­blem: Exis­ting secu­re key manage­ment solu­ti­ons are expen­si­ve, becau­se they affect:

  • Pro­duc­tion: redu­ced fle­xi­bi­li­ty due to invest­ments in resi­li­ent key/certificate inte­gra­ti­on as well as in new trus­ted pro­ces­ses.
  • Usa­bi­li­ty: com­plex pro­vi­sio­ning pro­ces­ses are often not accep­ted by the end user.

Smart and Secure Key Management

PHYSEC pro­vi­des secu­re key/certificate manage­ment, while deco­u­pling the pro­duc­tion line. Here only public key mate­ri­al is nee­ded to be flas­hed on the device. The end user estab­lis­hes the device-spe­ci­fic cryp­to­gra­phic secu­ri­ty para­me­ters during com­mis­sio­ning.


  • CA, PKI, and Cer­ti­fi­ca­tes con­form to BSI (Secu­ri­ty made in Ger­ma­ny)
  • User-friend­ly App-Plugin for In-Field pro­vi­sio­ning (only for mutu­al authen­ti­ca­ti­on; not necessa­ri­ly trust­worthy)
  • Stan­dard (e.g., NFC, BLE, WiFi) or pro­prie­ta­ry com­mis­sio­ning inter­faces (e.g., FSK-bridge for LoRa­WAN devices)

PHYSEC GmbH stands for the most simp­le and secu­re digi­tiz­a­ti­on of pro­ducts and ser­vices. With IoTree™, PHYSEC deve­lo­ps and dis­tri­bu­tes a key‑, cer­ti­fi­ca­te- and iden­ti­ty- manage­ment plat­form that allows device manu­fac­tu­rers to digi­ti­ze any pro­duct in seri­es. The spe­cial fea­ture of IoTree™ is the pro­duc­tion-inde­pen­dent inte­gra­ti­on of Secu­ri­ty and Con­nec­ti­vi­ty fea­tures into your pro­duct as well as the free choice (and pos­si­ble chan­ge) of the cloud ser­vice plat­form.

personal consultation

We as PHYSEC ans­wer your ques­ti­ons.
You can talk direct­ly to our exe­cu­ti­ves.

Dr. Chris­ti­an Zen­ger, CEO

Dr. Hei­ko Koep­ke, CFO