MAXQ1061

DeepCover Cryptographic Controller for Embedded Devices

A Turnkey Solution for Secure Storage, Digital Signature, Encryption, Secure Boot, and TLS/SSL Communication Protocol


Description

DeepCover® embedded security solutions cloak sensitive data under multiple layers of advanced physical security to provide the most secure key storage possible.

The DeepCover cryptographic controller (MAXQ1061) protects the confidentiality, authenticity and integrity of software IP, communication and revenue models. It is ideal for connected embedded devices, industrial networking, PLC, and network appliances.

The embedded, comprehensive cryptographic toolbox provides key generation and storage up to full SSL/TLS/DTLS support by offering a high level of abstraction including TLS/DTLS key negotiation, ECDSA-based TLS/DTLS authentication, digital signature generation and verification, SSL/TLS/DTLS packet encryption, and MAC algorithms. It can also serve as a secure bootloader for an external generic microcontroller.

32KB of user-programmable EEPROM securely store certificates, public keys, private and secret keys, monotonic counters, and arbitrary data. A flexible file system manages access rights for the objects. The device is controlled over a SPI or I²C interface. Life cycle management and a secure key loading protocol are provided.

Cryptographic algorithms supported by the device include AES, ECC, ECDSA signature scheme, SHA, and MAC digest algorithms. The true random number generator can be used for on-chip key generation. A separate hardware AES engine over SPI, allows it to function as a coprocessor for stream encryption.

The advanced physical, environmental and logical protections, are designed to meet the stringent requirements of FIPS and Common Criteria EAL4+ certifications.

Key Features

  • Advanced Cryptographic Tool Box Seamlessly Supports Highly Secure Key Storage
    • Certificates Chain Management
    • Secure 32KB File System Based on Nonvolatile EEPROM (500K Cycles) for Extensive Key and Certificate Storage
    • Symmetric-key: AES-128/-256 (ECB, CBC, CCM)
    • Asymmetric-key: ECC NIST P-256, -521, -384
    • Secure Hash: SHA-256, -384, -512
    • MAC Digest: CBC-MAC, HMAC-SHA256, HMAC-SHA384, HMAC-SHA512
    • Signature Schemes: ECDSA (FIPS 186-4)
    • Key Exchange: EC Diffie-Hellman (TLS)
    • 128-Bit AES Stream Encryption Engine Over SPI (Up to 20Mb/s) Supporting AES-GCM and AES-ECB Modes
    • On-Chip Key Generation: ECC, AES
    • Random Number Generation: True RNG
  • High-Level Functions Simplify SSL/TLS/DTLS Implementations
    • TLS/DTLS Key Negotiation (PSK, ECDH, ECDHE)
    • ECDSA Based TLS/DTLS Authentication, Digital Signature Generation and Verification
    • SSL/TLS/DTLS Packet Encryption (AES)
    • MAC Algorithm (HMAC-SHA256)
  • Extensive Host/System Services Increase Flexibility and Reduce System Cost
    • Watchdog Timer
    • Power-On Reset/Brownout Reset
    • Secure Boot Function
    • Tamper Detection
    • Life Cycle Management and Key Loading Protocol
    • Flexible File System With User-Programmable Access Conditions for Each Object Software Reset
    • Software Reset, Shutdown, and Wake-Up Functions
  • Multiple Communication Interface Options for Simpler Connection to a Host Processor
    • I²C Slave Controller
    • SPI Slave Controller with a Dedicated DMA Channel and 128-Bit AES Stream Encryption Engine Supporting AES-GCM and AES-ECB Modes

Applications/Uses

  • Certificate Distribution and Management
  • Cybersecurity for Critical Infrastructures
  • Electronic Signature Generation
  • Secure Access Control
  • Smart Metering
Part Number MCU Core Data Processing Internal SRAM
(KBytes)
SPI Bus I2C Bus Timer Features Package/Pins
MAXQ1061 NEW! MAXQ30 (RISC) 32-bit 16 1 1 Slave Watchdog
TSSOP/14
See All Microcontrollers (48)
Pricing Notes:
This pricing is BUDGETARY, for comparing similar parts. Prices are in U.S. dollars and subject to change. Quantity pricing may vary substantially and international prices may differ due to local duties, taxes, fees, and exchange rates. For volume-specific and version-specific prices and delivery, please see the price and availability page or contact an authorized distributor.


MAXQ1061-KIT: Evaluation Kit for the MAXQ1061

Technical Documents

App Note 6391 Implementing Secure Authentication Without Being a Cryptography Expert

Quality and Environmental Data

Request Reliability Report for: MAXQ1061 
Lead-Free Package Tin (Sn) Whisker Reports

Related Resources


MAXREFDES155
MAXREFDES155#: DeepCover Embedded Security in an IoT: Public-Key Secured Data Paths


MAX32552
DeepCover Secure Cortex-M3 Flash Microcontroller

  • ARM® Cortex M3 Processor Core Allows for Easy Integration into Applications
  • Security Features Facilitate System-Level Protection
  • Integrated Peripherals Reduce External Component Count

MAXQ1061
DeepCover Cryptographic Controller for Embedded Devices

  • Advanced Cryptographic Tool Box Seamlessly Supports Highly Secure Key Storage
  • High-Level Functions Simplify SSL/TLS/DTLS Implementations
  • Extensive Host/System Services Increase Flexibility and Reduce System Cost

MAX32625
Ultra-Low Power, High-Performance ARM Cortex-M4F Microcontroller for Wearables

  • High-Efficiency Microcontroller for Wearable Devices
  • Power Management Maximizes Uptime for Battery Applications
  • Optimal Peripheral Mix Provides Platform Scalability

MAX32626
Ultra-Low Power, High-Performance ARM Cortex-M4F Microcontroller for Wearables

  • High-Efficiency Microcontroller for Wearable Devices
  • Power Management Maximizes Uptime for Battery Applications
  • Optimal Peripheral Mix Provides Platform Scalability