QVault TPM

We offer a pre-provisioned Trusted Platform Module (TPM) based on a quantum-resistant RISC-V secure hardware platform, currently undergoing FIPS 140-3, TCG and Common Criteria EAL5+ evaluations. 

Product specifications

KEY BENEFITS

Picto SEAL SQ - Chip bleu

Hardware-rooted trust for long-lived devices

 
QVault TPM delivers a hardware Root of Trust on a secure 80 MHz RISC-V core, combining physical protection, isolated execution, and secure key storage to enable long-term device identity, secure boot, and attestation for 10+ year lifecycles.
Picto SEAL SQ - Certifié et conforme

Security-grade TPM with ongoing industry certifications 

QVault TPM built on a Common Criteria EAL5+ security architecture, incorporating an SP 800-90B validated entropy source and TPM-compliant interfaces, with certification processes currently underway. 
Picto Post-Quantum design

Quantum-resistant by design

 
Quantum-resistant by design with NIST-selected Kyber and Dilithium alongside classical crypto, enabling a smooth, compatible transition to post-quantum security.
Picto SEAL SQ - Flexible (2)

Flexible integration for embedded and edge platforms

High-speed interfaces, integrated memory, wide operating range, and TPM-compliant QFN32 packaging for embedded and edge devices.

Certifications

QVault TPM is currently progressing through certification and validation programs, including Common Criteria EAL5+, FIPS 140-3 and TCG TPM certification pathways. 

QS7001_Certifications2

 

MS_600X QVault TPM

QVault TPM – Quantum-ready TPM secure element

A TPM-compliant RISC-V secure hardware platform designed for Common Criteria EAL5+ assurance levels and supporting post-quantum algorithms (Kyber & Dilithium)  and rich interoperability with classical crypto standards, tailored for embedded, IoT and edge systems that require long-term, quantum-safe protection.

Sampling and availability planned for November 2026.
Download Flyer Data Sheet Contact us

KEY FEATURES

  • FIPS 140-3 and TCG certification processes underway 
  • TCG TPM Library Spec 2.0
  • TCG 's PC Client platform
  • Quantum Resistant (Kyber / Dilithium)
  • Pre-Provisionned: 2048 bits RSA KeyPairs, Endorsement Keys & EK Certificates (RSA2048, ECC P256, ECC P384)
  • Cryptography: ECC (256 bits) 
  • Digital Sign: ECDSA    
  • Universally Recognized Root-of-Trust                

QVault TPM EK Certificate Chain

TPM Trust Chain 

 Trusted Hardware Identity 

SEALSQ QVault TPM is backed by a cryptographically verifiable hardware identity.
To support secure device provisioning and attestation workflows, SEALSQ provides the Endorsement Key (EK) Certificate Chain, establishing the trusted link between each TPM device and SEALSQ’s root certificate authority.

This resource allows system integrators and platform providers to confidently validate TPM identities within their security architectures.
Download the QVault TPM EK Certificate Chain

APPLICATIONS

Uses Cases and Target Applications

PCs-Laptops

Laptops

PCs, Laptops & Edge Computing Platforms

QVault TPM is ideal for modern computing systems that require a hardware Root of Trust aligned with TCG standards.

It secures boot integrity, platform identity, credential protection, disk encryption keys, and provides a stable trust anchor for Windows, Linux and OEM-specific security stacks. Its TPM-compliant pinout and CC EAL5+ security make it suitable for motherboards, servers, industrial PCs, thin clients and secure workstations.

Automotive

Automotive

Automotive Systems & EV Infrastructure

Modern automotive architectures require immutable device identity, certified security components and PQC-readiness.

QVault TPM protects ECU credentials, communication keys and software authenticity, enabling secure in-vehicle networking and trusted updates. It is also suited for EV charging stations, telematics units and secure onboard modules.

Learn more
Industrial Gateaways & Edge Infrastucture

Industrial Gateway

Industrial Gateways & Edge Infrastructure

Industrial gateways and controllers demand strong, auditable security foundations. QVault TPM enables secure boot, attestation, key hierarchy management and protected firmware updates, ensuring only trusted code runs at the edge.
 
Its long-term reliability and PQC support make it an excellent choice for SCADA gateways, industrial routers, protocol converters and automation hubs.
Smart energy _ Smart Building

Smart Energy

Smart Energy & Utilities

Energy infrastructure devices are deployed for decades and must resist advanced threats.

QVault TPM secures meter identity, grid node authentication, encrypted communications and ensures trusted firmware through measured boot and attestation. It fits smart meters, data concentrators, grid controllers and energy gateways that require long-term, quantum-safe protection.

Learn more
Router CPEs 5G

Telecom

Telecom & Networking Equipment

Routers, CPEs and 5G/FTTx equipment rely on strong hardware security to validate firmware and prevent device spoofing.
 
QVault TPM provides platform integrity checks, secure storage and remote attestation, making it a strong foundation for customer premises equipment, small cells, network appliances and operator-managed edge nodes.
Learn more
Healthcare

Medical

Medical & Healthcare Devices

Medical equipment must guarantee integrity, confidentiality and long-term trust in sensitive environments. QVault TPM establishes a secure hardware identity, protects cryptographic keys, and ensures authenticated firmware and configuration integrity.

It is suitable for diagnostic devices, patient monitoring systems, clinical gateways and connected medical instruments.

SEAL SQ Implementing Quantum-proof algorithms in secure hardware doc

Implementing Quantum-proof algorithms in secure hardware

From 2018 to 2021 SEAL SQ quantum innovation team has co-directed a PhD thesis on the implementation of post-quantum algorithms in our secure architectures. 

seal-visual

Fill the form download your report