DS28S60 DeepCover Cryptographic Coprocessor with ChipDNA

Product Details

General Description

The DS28S60 DeepCover^® cryptographic coprocessor easily integrates into embedded systems enabling confidentiality, authentication and integrity of information. With a fixed command set and no device-level firmware development required, the DS28S60 makes it fast and easy to implement full security for IoT devices. Communication with the device is performed using the industry-standard SPI slave interface at up to 20Mbps with a simple set of commands that provide a comprehensive security toolbox utilizing hardware-based cryptographic blocks. As a coprocessor to an SPI-interfaced host controller, the command functionality includes ECDSA-P256 signature and verification, SHA-256 based digital signature, AES-128 packet encryption/decryption, ECDHE key exchange for session key generation, and access to high-quality random numbers. An NIST SP800-90B compliant true random number generator (TRNG) is integrated for on-chip cryptographic operations as well as providing random data and nonces to the host controller, if required. Nonvolatile storage for secrets, certificates, public/private keys, and application-specific sensitive data is supported with 3.6KB of secured flash memory.

The DS28S60 integrates Maxim’s patented ChipDNA™ feature, a physically unclonable function (PUF) to provide a cost-effective solution with the ultimate protection against security attacks. Using the random variation of semiconductor device characteristics that naturally occur during wafer fabrication, the ChipDNA circuit generates a unique output value that is repeatable over time, temperature, and operating voltage. Attempts to probe or observe ChipDNA operation modifies the underlying circuit characteristics, preventing discovery of the unique value used by the chip's cryptographic functions. ChipDNA output is utilized as key content to cryptographically secure all device-stored data.

Functional Diagrams

DS28S60 Block Diagram

Enlarge+ Enlarge+

Typical Application Example, Battery-Powered LoRa Endpoint

Enlarge+ Enlarge+

Benefits and Features

Secure Coprocessor with NIST-Compliant Hardware-Based Crypto
- FIPS-180 SHA-256 MAC and FIPS-198 HMAC Hash
- FIPS-197 AES-128 with GCM
- FIPS-186 ECDSA-P256 Elliptic Curve Digital Signature/Verification
- SP800-56A ECDHE-P256 Key Exchange
- SP800-90B Compliant TRNG

Robust Countermeasures Protect Against Security Attacks
- ChipDNA Produced Key Cryptographically Protects All Stored Data
- Actively Monitored Die Shield Detects and Reacts to Intrusion Attempts

Enables Fast Time-to-Market with Easy End Application Integration
- Fixed-Function Command Set, No Device-Level Firmware
- C-Source Demos for Examples of SW Development
- 3.6KB Flash Array for Secure Key, Certificate, and Data Storage

High-Speed Interface for Host Microcontroller Communication
- 20MHz SPI with Mode 0 or Mode 3 Operation

Supplemental Features Enable Easy Integration into End Applications
- Unique and Unalterable Factory-Programmed, 64-Bit Identification Number (ROM ID)
- Low-Power Operation
  - 100nA Power-Down Mode
  - 0.35mA Idle
- 12-Pin, 3mm x 3mm TDFN
-40°C to +105°C, 1.62V to 3.63V

Request DS28S60
Security User Guide

Applications

Internet of Things (IoT) Device Security
Key Management and Exchange
End-to-End Encryption
End-Point Authentication
Prevention of Counterfeit Products

ChipDNA is a trademark of Maxim Integrated Products, Inc.DeepCover is a registered trademark of Maxim Integrated Products, Inc.

19-000793; Rev 1; 7/20

See parametric specs for Secure Authenticators

Key Features

Applications/Uses

See parametric specs for Secure Authenticators

Parametric specs for Secure Authenticators

Crypto Engine	Asymmetric Symmetric
End Equipment	IP Protection IoT Node Crypto-Protection Secure Authentication of Accessories and Peripherals Secure Boot or Download
Bus Type	SPI
Memory Type	Flash
Memory Size	3.6 KB
Deep Cover	Yes
Oper. Temp. (°C)	-40 to 105 C
Package/Pins	TDFN-CU/12
Budgetary Price (See Notes)	0.71

See parametric specs for Secure Authenticators

Simplified Block Diagram

Technical Docs

Data Sheet	DeepCover Cryptographic Coprocessor with ChipDNA	Aug 20, 2020
App Note	The Basics of Using the DS28S60
User Guide	DS28S60 SECURITY USER GUIDE

Design & Development

Click any title below to view the detail page where available.

Evaluation Board

DS28S60EVKIT

Data Sheet

$65.00

Description

The DS28S60 evaluation system (EV system) provides the hardware and software necessary to exercise the features of the DS28S60. The EV system consists of five DS28S60Q+ devices in a 12-pin TDFN package, a DS9121EQ+ evaluation TDFN socket board, and a DS9482P# USB-to-I²C/SPI/1-Wire^® adapter. The evaluation software runs under Windows^® 10, Windows 8, and Windows 7 operating systems, both 64-bit and 32-bit versions. It provides a handy user interface to exercise the features of the DS28S60.

View Details

Features

Demonstrates the Features of the DS28S60 DeepCover^® Secure Coprocessor
SPI Communication is Logged to Aid Firmware Designers Understanding of DS28S60
SPI/1-Wire/I²C USB Adapter Creates a Virtual COM Port on Any PC
Fully Compliant with USB Specification v2.0
Software Runs on Windows 10, Windows 8, and Windows 7 for Both 64-Bit and 32-Bit Versions
3.3V ±3% Operating Voltage
Convenient On-Board Test Points, TDFN Socket
Evaluation Software Available by Request

Reference Circuit

MAXREFDES9001: Secured IoT LoRa Sensor Nodes using the DS28S60 and Google Cloud

Support & Training

Search our knowledge base for answers to your technical questions.

Filtered Search

Our dedicated team of Applications Engineers are also available to answer your technical questions. Visit our support portal .

General Description

Functional Diagrams

DS28S60 Block Diagram

Enlarge+ Enlarge+

Typical Application Example, Battery-Powered LoRa Endpoint

Enlarge+ Enlarge+

Benefits and Features

Secure Coprocessor with NIST-Compliant Hardware-Based Crypto
- FIPS-180 SHA-256 MAC and FIPS-198 HMAC Hash
- FIPS-197 AES-128 with GCM
- FIPS-186 ECDSA-P256 Elliptic Curve Digital Signature/Verification
- SP800-56A ECDHE-P256 Key Exchange
- SP800-90B Compliant TRNG

Robust Countermeasures Protect Against Security Attacks
- ChipDNA Produced Key Cryptographically Protects All Stored Data
- Actively Monitored Die Shield Detects and Reacts to Intrusion Attempts

Enables Fast Time-to-Market with Easy End Application Integration
- Fixed-Function Command Set, No Device-Level Firmware
- C-Source Demos for Examples of SW Development
- 3.6KB Flash Array for Secure Key, Certificate, and Data Storage

High-Speed Interface for Host Microcontroller Communication
- 20MHz SPI with Mode 0 or Mode 3 Operation

Supplemental Features Enable Easy Integration into End Applications
- Unique and Unalterable Factory-Programmed, 64-Bit Identification Number (ROM ID)
- Low-Power Operation
  - 100nA Power-Down Mode
  - 0.35mA Idle
- 12-Pin, 3mm x 3mm TDFN
-40°C to +105°C, 1.62V to 3.63V

Request DS28S60
Security User Guide

Applications

Internet of Things (IoT) Device Security
Key Management and Exchange
End-to-End Encryption
End-Point Authentication
Prevention of Counterfeit Products

ChipDNA is a trademark of Maxim Integrated Products, Inc.DeepCover is a registered trademark of Maxim Integrated Products, Inc.

19-000793; Rev 1; 7/20

Parameters

Parametric specs for Secure Authenticators

Crypto Engine	Asymmetric Symmetric
End Equipment	IP Protection IoT Node Crypto-Protection Secure Authentication of Accessories and Peripherals Secure Boot or Download
Bus Type	SPI
Memory Type	Flash
Memory Size	3.6 KB
Deep Cover	Yes
Oper. Temp. (°C)	-40 to 105 C
Package/Pins	TDFN-CU/12
Budgetary Price (See Notes)	0.71

See parametric specs for Secure Authenticators

Key Features

Secure Coprocessor with NIST-Compliant Hardware-Based Crypto
- FIPS-180 SHA-256 MAC and FIPS-198 HMAC Hash
- FIPS-197 AES-128 with GCM
- FIPS-186 ECDSA-P256 Elliptic Curve Digital Signature/Verification
- SP800-56A ECDHE-P256 Key Exchange
- SP800-90B Compliant TRNG
Robust Countermeasures Protect Against Security Attacks
- ChipDNA Produced Key Cryptographically Protects All Stored Data
- Actively Monitored Die Shield Detects and Reacts to Intrusion Attempts
Enables Fast Time-to-Market with Easy End Application Integration
- Fixed-Function Command Set, No Device-Level Firmware
- C-Source Demos for Examples of SW Development
- 3.6KB Flash Array for Secure Key, Certificate, and Data Storage
High-Speed Interface for Host Microcontroller Communication
- 20MHz SPI with Mode 0 or Mode 3 Operation
Supplemental Features Enable Easy Integration into End Applications
- Unique and Unalterable Factory-Programmed, 64-Bit Identification Number (ROM ID)
- Low-Power Operation
  - 100nA Power-Down Mode
  - 0.35mA Idle
- 12-Pin 3mm x 3mm TDFN

-40°C to +105°C, 1.62V to 3.63V

Applications/Uses

End-Point Authentication
End-to-End Encryption
Internet of Things (IoT) Device Security
Key Management and Exchange
Prevention of Counterfeit Products

Description

The DS28S60 DeepCover^® cryptographic coprocessor easily integrates into embedded systems enabling confidentiality, authentication and integrity of information. With a fixed command set and no device-level firmware development required, the DS28S60 makes it fast and easy to implement full security for IoT devices. Communication with the device is performed using the industry-standard SPI slave interface at up to 20Mbps with a simple set of commands that provide a comprehensive security toolbox utilizing hardware-based cryptographic blocks. As a co-processor to an SPI-interfaced host controller, the command functionality includes ECDSA-P256 signature and verification, SHA-256 based digital signature, AES-128 packet encryption/decryption, ECDHE key exchange for session key generation, and access to high-quality random numbers. An NIST SP800-90B compliant true random number generator (TRNG) is integrated for on-chip cryptographic operations as well as providing random data and nonces to the host controller, if required. Nonvolatile storage for secrets, certificates, public/private keys, and application-specific sensitive data is supported with 3.6KB of secured flash memory.

Simplified Block Diagram

DS28S60: Simplified Block Diagram

Technical Docs

Data Sheet	DeepCover Cryptographic Coprocessor with ChipDNA	Aug 20, 2020
App Note	The Basics of Using the DS28S60
User Guide	DS28S60 SECURITY USER GUIDE

Support & Training

Search our knowledge base for answers to your technical questions.

Filtered Search

Our dedicated team of Applications Engineers are also available to answer your technical questions. Visit our support portal .

INTERACTIVE Data Sheet

DS28S60

DeepCover Cryptographic Coprocessor with ChipDNA

Product Details

Key Features

Applications/Uses

Simplified Block Diagram

Technical Docs

Design & Development

Support & Training

Parameters

Key Features

Applications/Uses

Description

Simplified Block Diagram

Technical Docs

Support & Training

DS28S60 Related Videos