Lattice Kit Simplifies Industrial Security for a New Era of Regulation

HILLSBORO, OR – February 17, 2026 – As industrial manufacturers face mounting pressure from both sophisticated cyber threats and stringent new regulations, Lattice Semiconductor today announced a new solution aimed at simplifying the complex task of securing devices at the network's edge. In a strategic collaboration with industrial platform provider EXOR International and security orchestration firm TrustiPhi, Lattice has launched the Cyber Resilience Reference Kit, a pre-integrated solution designed to accelerate the development of secure industrial and edge systems.

The kit combines Lattice’s MachXO3D secure control FPGA, EXOR’s industrial-grade uSOM10 computing platform, and TrustiPhi’s ProtoPilot security management software. The partnership aims to provide device manufacturers with a unified, 'plug-and-play' workflow, removing the significant hurdles often associated with integrating security features from multiple vendors.

A Timely Response to a Growing Threat Landscape

The launch arrives at a critical juncture for the industrial sector. The rapid expansion of the Industrial Internet of Things (IIoT) and the convergence of Information Technology (IT) and Operational Technology (OT) networks have dramatically increased the attack surface of factories, utilities, and critical infrastructure. These connected systems, once isolated, are now prime targets for cyberattacks ranging from ransomware to nation-state-sponsored espionage.

Compounding this threat is a new wave of regulatory oversight, most notably the European Union’s Cyber Resilience Act (CRA). The landmark legislation mandates a 'security by design' approach, requiring manufacturers of any “product with digital elements” sold in the EU to ensure cybersecurity throughout the product's entire lifecycle. This includes obligations for secure development, vulnerability handling, and providing security updates for at least five years. Non-compliance carries the risk of significant fines and products being barred from the EU market.

“Security can no longer be an afterthought, especially at the industrial edge,” said Karl Wachswender, Senior Principal System Architect Industrial at Lattice Semiconductor. “With this collaboration, we’re giving customers a practical, integrated way to accelerate secure system development and support emerging requirements such as the EU Cyber Resilience Act.”

An Integrated Ecosystem to Tame Complexity

For many device manufacturers, the primary challenge in meeting these new security demands lies in the complexity of implementation. Building a secure system often requires stitching together disparate hardware and software components, a process that is time-consuming, expensive, and prone to error. The new reference kit directly addresses this pain point by offering a cohesive, pre-validated environment.

The solution is built on three pillars of specialized expertise:

• Lattice Semiconductor provides the hardware foundation with its MachXO3D FPGA, which establishes a hardware-rooted trust and manages the secure operation of the entire platform.
• EXOR International contributes its production-grade uSOM10 platform, an industrial edge computing module designed for harsh environments, providing the necessary processing power and connectivity for real-world IIoT applications.
• TrustiPhi delivers the software orchestration layer with its ProtoPilot platform, which centralizes the configuration and management of security features like cryptographic keys, certificates, and secure update workflows.

“Industrial customers are looking for turnkey ways to embed cyber resilience into their devices without adding complexity,” stated Claudio Ambra, CTO of EXOR International. Ari Singer, CTO of TrustiPhi, added that the collaboration streamlines the security experience “into a single, cohesive kit that removes barriers to adoption and helps customers get hands-on experience with proven security techniques.”

The Foundation of Hardware-Rooted Trust

At the core of the reference kit’s security promise is the concept of a hardware root of trust (RoT). Unlike software-only security, which can be compromised, a hardware RoT provides an immutable anchor within the silicon itself. It serves as the 'first-on, last-off' component in a system, responsible for verifying the integrity of all other firmware and software from the moment the device boots.

The Lattice MachXO3D is purpose-built for this role. It complies with NIST Platform Firmware Resiliency (PFR) guidelines, enabling it to protect, detect, and recover system firmware from unauthorized modifications. The FPGA includes cryptographic engines to handle authentication and encryption, a unique secure device identity, and the ability to perform secure boot, ensuring that only authenticated code can run. This foundational security is critical for defending against advanced threats like firmware tampering, malware injection, and supply chain attacks where counterfeit or compromised components are introduced.

By embedding this RoT directly into the hardware, the kit provides a level of assurance that is becoming a baseline requirement for devices deployed in critical systems. It ensures the device can always be trusted to operate as intended and can be securely recovered even if a compromise is detected.

Streamlining Development and Lifecycle Security

Beyond providing a robust security foundation, the kit is designed to accelerate the entire development and deployment lifecycle. The unified workflow allows developers to immediately begin evaluating end-to-end cyber resilience, from secure device onboarding and authenticated communication to continuous integrity monitoring and verified secure updates. This integrated experience helps development teams explore practical threat mitigation strategies and prepare for compliance audits without becoming security experts themselves.

The press release notes that the solution was evaluated by major industrial companies in an early access program, and their feedback helped shape a product that addresses real-world operational challenges. This pre-launch validation suggests a strong market need for such an integrated offering.

By providing a faster path to designing, deploying, and managing secure devices, the collaboration between Lattice, EXOR, and TrustiPhi represents a significant step toward making robust, lifecycle-aware cybersecurity more accessible for the entire industrial ecosystem.