Certicom KeyInject Integrated into Kilopass XPM Xtend to Protect Against Security Breaches during HDCP Chip Manufacturing Process

MISSISSAUGA, Ontario – (November 6, 2007) Certicom Corp. (TSX: CIC) and Kilopass Technology Inc., a leading CMOS Logic Non-Volatile Memory (NVM) IP vendor, have partnered to develop and introduce a new embedded key storage product. The solution interoperates with Certicom’s KeyInject™ technology to automate key logistics, diminish liability, improve tracking and reduce costs related to chip manufacturing and silicon testing of enhanced High-bandwidth Digital Content Protection (HDCP) keys.

Through this partnership and joint product agreement, the new Kilopass Extra Permanent Memory Xtend (XPM Xtend™) licensable intellectual property will give Kilopass customers a secure memory solution made specifically for protecting HDCP keys. Supported by Certicom’s KeyInject infrastructure, XPM Xtend automates and secures manufacturing of HDCP keyed chips. This solution has become increasingly important given the growing number of extremely expensive security breach penalties involving HDTVs, recording and playback devices and the manufacturing processes that create these products.

Today, HDCP licensees, such as manufacturers of HDMI and DisplayPort products, face soaring liabilities for lost, stolen or vulnerable keys – approximately $8 million for each HDCP key exposed. For this very reason, companies who license HDCP keys are re-evaluating whether an in-house key management system provides sufficient protection.

“There are many challenges that organizations face concerning the secure manufacturing of chips that use HDCP keys. Quite often, security breaches are perpetrated by inside employees, making this a real problem for any HDCP licensee,” said Bernard Crotty, president and CEO of Certicom. “With the proliferation of high-definition content, the issue of content protection is clearly on the rise. We are pleased that Kilopass has partnered with us to offer cost-effective, end-to-end security for their customers through their XPM Xtend solution.”

Powered by Certicom KeyInject, Kilopass XPM Xtend keeps all keys private – from company headquarters down to the chips manufactured worldwide. KeyInject encrypts keys using industry-standard protocols and techniques based on Elliptic Curve Cryptography (ECC) and the Advanced Encryption Standard (AES), so that it’s possible to secure HDCP chips during production by controlling access to keying information.

Now, with Certicom’s KeyInject technology embedded in XPM Xtend, Kilopass customers will benefit from an additional level of security not available previously. XPM Xtend provides protection against key theft, human error or flaws in cryptographic designs and implementation.

“There’s no doubt that intellectual property theft can be very costly if a device, system or manufacturing process is breached. By leveraging Certicom’s KeyInject technology in our XPM Xtend solution, we are able to offer the highest, most trusted security available for our customers’ keys,” said Bernie Aronson, CEO of Kilopass. “Our partnership with Certicom ensures that our customers can securely and cost-effectively manufacture HDCP-enabled chips.”

About Certicom KeyInject and XPM Xtend

Working closely, Certicom and Kilopass provide a secure path for sensitive cryptographic keys directly from the licensor of the key through to the target device. Keys that are unique to individual devices need both a secure NVM storage technology and a solution that protects these keys throughout the manufacturing supply chain. Combined, KeyInject and XPM Xtend provide security for modern semiconductor manufacturing processes as well as at the device level with physical layer security that protects key information inside the target device. XPM Xtend is supported for mainstream TSMC process technologies between 180nm and 65nm today. For immediate questions and support, please

For more detailed information online, the datasheet for Certicom KeyInject may be obtained at:,keyinjecthdcp_home

The datasheet for XPM Xtend may be obtained at:,keyinjecthdcp_home

About Certicom

Certicom protects the value of content, applications and devices with government-approved security. Adopted by the National Security Agency (NSA) for government communications, Elliptic Curve Cryptography (ECC) provides the most security per bit of any known public-key scheme. As the global leader in ECC, Certicom security offerings are currently licensed to more than 300 customers including General Dynamics, Motorola, Oracle, Research In Motion and Unisys. Founded in 1985, Certicom's corporate offices are in Mississauga, Ontario, Canada with worldwide sales and marketing headquarters in Reston, Virginia and offices in the U.S., Canada, Europe and China. Visit

About Kilopass Technology 

Kilopass Technology, Inc., a fast-growing supplier of embedded non-volatile memory intellectual property, leverages standard logic CMOS processes to deliver one-time programmable structures based on its extra-permanent memory (XPM) technology. The memory arrays can be used for the storage of firmware, security codes, calibration data and other application critical information. Kilopass is headquartered at 3333 Octavius Dr. Suite 101, Santa Clara, CA 95054, USA. For more information, please visit, call (408) 980-8808 or email

For further information, please contact:

For Certicom:
John Conrad
Merritt Group Inc.

Certicom, Certicom ECC Core, Certicom Security Architecture, Certicom Trust Infrastructure, Certicom CodeSign, Certicom KeyInject, Security Builder, Security Builder API, Security Builder BSP, Security Builder Crypto, Security Builder ETS, Security Builder GSE, Security Builder IPSec, Security Builder MCE, Security Builder NSE, Security Builder PKI and Security Builder SSL are trademarks or registered trademarks of Certicom Corp. All other companies and products listed herein are trademarks or registered trademarks of their respective holders. Information subject to change.
Except for historical information contained herein, this news release contains forward-looking statements that involve risks and uncertainties. Factors which could cause actual results or events to differ materially from current expectations include, among other things: the ability of the Company to successfully implement its strategic initiatives and whether such strategic initiatives will yield the expected benefits; the ability of the Company to develop, promote and protect its proprietary technology security breaches or defects in the Company's products; competitive conditions in the businesses in which the Company participates; changes in consumer spending; the outcome of legal proceedings as they arise; general economic conditions and normal business uncertainty; consolidation in the Company's industry and by its customers; customer preferences towards product offerings; the risk that customers may cancel their contracts with the Company; reliance on a limited number of customers; demand for ECC-based technology; performance of the Company's management team and the Company's ability to attract and retain skilled employees; operating the Company's business profitably; fluctuations in revenue and foreign currency exchange rates; interest rate fluctuations and other changes in borrowing costs; the ability to develop and maintain strategic relationships; and other factors identified under the heading "Risk Factors in the Company's annual information" form dated July 26, 2006 and filed on SEDAR at