Top

DeepCover Automotive Secure Coprocessor

Ensure Vehicle Safety and Reliability by Authenticating Automotive Components

Product Details

Key Features

Parametric specs for Secure Authenticators
Crypto Engine Asymmetric, Symmetric
End Equipment Automotive Secure Authentication
IP Protection
IoT Node Crypto-Protection
Secure Authentication of Accessories and Peripherals
Secure Boot or Download
Bus Type I2C
Memory Type OTP
Memory Size 6 Kb
Deep Cover Yes
Oper. Temp. (°C) -40°C to +125°C
Package/Pins TDFN/10
Budgetary
Price (See Notes)
1.4
View Less

Simplified Block Diagram

Technical Docs

Support & Training

Search our knowledge base for answers to your technical questions.

Filtered Search

Our dedicated team of Applications Engineers are also available to answer your technical questions. Visit our support portal .

Sampling:
Selecting the Sample button above will redirect to the third-party ADI Sample Site. The part selected will carry over to your cart on this site once logged in. Please create a new account there if you have never used the site before. Contact SampleSupport@analog.com with any questions regarding this Sample Site.

Parameters

Parametric specs for Secure Authenticators
Crypto Engine Asymmetric, Symmetric
End Equipment Automotive Secure Authentication
IP Protection
IoT Node Crypto-Protection
Secure Authentication of Accessories and Peripherals
Secure Boot or Download
Bus Type I2C
Memory Type OTP
Memory Size 6 Kb
Deep Cover Yes
Oper. Temp. (°C) -40°C to +125°C
Package/Pins TDFN/10
Budgetary
Price (See Notes)
1.4

Key Features

  • HW Accelerator Offloads ECDSA and SHA-256 Computations from Host Processor
    • FIPS 186 ECDSA P-256 Signature and Verification
    • ECDH Key Exchange for Session Key Establishment
    • ECDSA-Authenticated R/W of Configurable Memory
    • FIPS 180 HMAC for Bidirectional Authentication
  • SHA-256 One-Time Pad Encrypted R/W of Configurable Memory Using an ECDH Established Key
  • One GPIO Pin with Optional Authentication Control
    • Open Drain, 4mA/0.4V
    • Optional SHA-256 or ECDSA-Authenticated On/Off and State Read
    • Optional ECDSA Certificate to Set On/Off after Multiblock Hash for Secure Boot
  • TRNG with NIST SP 800-90B Compliant Entropy Source with Function to Read Out
  • Optional Chip-Generated Pr/Pu Key Pairs for ECC Operations
  • 6Kb of One-Time Programmable (OTP) Memory for User Data, Keys, and Certificates
  • Unique and Unalterable, Factory-Programmed, 64-Bit Identification Number (ROM ID)
    • Optional Input Data Component to Crypto and Key Operations
  • I2C Communication up to 1MHz
  • 3.3V ±10%, -40°C to +125°C Operating Range
  • 10-Pin, 3mm x 3mm, Side-Wettable TDFN Package
  • AEC-Q100 Grade 1

Applications/Uses

  • Automotive Secure Authentication
  • Identification and Calibration Automotive of Parts/Tools/Accessories
  • IoT Node Crypto-Protection
  • Secure Authentication of Accessories and Peripherals
  • Secure Boot or Download of Firmware and/or System Parameters
  • Secure Storage of Cryptographic Keys for a Host Controller

Description

The DS2478 is a DeepCover® secure ECDSA and HMAC SHA-256 coprocessor companion to the DS28E40 or DS28C40. The coprocessor can compute any required HMACs or ECDSA signatures to do any operation on the DS28E40 or DS28C40. The DS2478 provides a core set of cryptographic tools derived from integrated asymmetric (ECC P-256) and symmetric (SHA-256) security functions. In addition to the security services provided by the hardware implemented crypto engines, the device integrates a FIPS/NIST true random number generator (TRNG), 6Kb of secured one-time-programmable (OTP) memory, one configurable GPIO, and a unique 64-bit ROM identification number (ROM ID).

The ECC public/private key capabilities operate from the NIST-defined P-256 curve and include FIPS 186-compliant ECDSA signature generation and verification to support a bidirectional asymmetric key authentication model. The SHA-256 secret-key capabilities are compliant with FIPS 180 and are flexibly used in conjunction with ECDSA operations or independently for multiple HMAC functions.

The GPIO pin can be operated under command control and include configurability supporting authenticated and nonauthenticated operation including an ECDSA-based crypto-robust mode to support secure-boot of a host processor. This secure-boot method can also be used to enable the coprocessor functions.

DeepCover embedded security solutions cloak sensitive data under multiple layers of advanced security to provide the most secure key storage possible. To protect against device-level security attacks, invasive and noninvasive countermeasures are implemented, including an active die shield, encrypted storage of keys, and algorithmic methods.

Simplified Block Diagram

DS2478: Simplified Block Diagram DS2478:Simplified Block Diagram Zoom icon

Technical Docs

Support & Training

Search our knowledge base for answers to your technical questions.

Filtered Search

Our dedicated team of Applications Engineers are also available to answer your technical questions. Visit our support portal .

Sampling:
Selecting the Sample button above will redirect to the third-party ADI Sample Site. The part selected will carry over to your cart on this site once logged in. Please create a new account there if you have never used the site before. Contact SampleSupport@analog.com with any questions regarding this Sample Site.