Maxim
/
Products
/
Embedded Security
/
Secure Authentication
/
DS28C36
Embedded Security Secure Authentication DS28C36
Top

DS28C36

Download Data Sheet Download

DeepCover Secure Authenticator

Provides Affordable Elliptic-Curve Public-Key Authentication Security to Protect Your Development Investment

Download Data Sheet Subscribe

Product Details

See parametric specs for Secure Authenticators

Key Features

Applications/Uses

See parametric specs for Secure Authenticators
Parametric specs for Secure Authenticators
Crypto Engine Asymmetric
Symmetric
Applications IP Protection
Medical Consumable ID
Medical Sensor Authentication and Calibration
PCB ID and Authentication
Print Cartridge Authentication
Printer Cartridge Configuration and Monitoring
Rack Card Security
Bus Type I2C
Memory Type EEPROM
Memory Size 4K x 1
Deep Cover Yes
Oper. Temp. (°C) -40 to +85
Package/Pins TDFN/6
Budgetary
Price (See Notes) 		1.13
See parametric specs for Secure Authenticators
View More

Simplified Block Diagram

Technical Docs

Data Sheet DeepCover Secure Authenticator Mar 01, 2019
Tutorial How Secure Authenticators and Coprocessors Can Simplify Cryptography
Tutorial Cryptography: Planning for Threats and Countermeasures
Tutorial Cryptography: Is a Hardware or Software Implementation More Effective?
Tutorial Cryptography: Fundamentals on the Modern Approach
Tutorial Cryptography: A Closer Look at the Algorithms
App Note Cryptography: How It Helps in Our Digital World
Tutorial Easily Add Memory, Security, Monitoring, and Control to Medical Sensors and Consumables
App Note Injection Molding an IC into a Connector or Consumable Item
User Guide MAXREFDES155# Quick Start Guide
App Note Implementing Secure Authentication Without Being a Cryptography Expert
App Note The Fundamentals of Secure Boot and Secure Download: How to Protect Firmware and Data within Embedded Devices
App Note How to Verify the DS28C36 ECDSA Certificate
App Note How to Authenticate DS28C36 Data (User Memory/GPIO/Decrement Counter) with ECDSA
App Note How to Generate a DS28C36 Session Key
User Guide DS28E39 Security User Guide
App Note Secure Authentication for Medical Disposables
App Note Why Now is a Good Time to Secure Your Embedded Systems with SHA-3
App Note Back to Basics: Secure Hash Algorithms

Support & Training

Search our knowledge base for answers to your technical questions.

Filtered Search

Our dedicated team of Applications Engineers are also available to answer your technical questions. Visit our support portal .

Parameters

Parametric specs for Secure Authenticators
Crypto Engine Asymmetric
Symmetric
Applications IP Protection
Medical Consumable ID
Medical Sensor Authentication and Calibration
PCB ID and Authentication
Print Cartridge Authentication
Printer Cartridge Configuration and Monitoring
Rack Card Security
Bus Type I2C
Memory Type EEPROM
Memory Size 4K x 1
Deep Cover Yes
Oper. Temp. (°C) -40 to +85
Package/Pins TDFN/6
Budgetary
Price (See Notes) 		1.13
See parametric specs for Secure Authenticators

Key Features

  • ECC-256 Compute Engine
    • FIPS 186 ECDSA P256 Signature and Verification
    • ECDH Key Exchange with Authentication Prevents Man-in-the-Middle Attacks
    • ECDSA Authenticated R/W of Configurable Memory
  • FIPS 180 SHA-256 Compute Engine
    • HMAC
  • SHA-256 OTP (One-Time Pad) Encrypted R/W of Configurable Memory Through ECDH Established Key
  • Two GPIO Pins with Optional Authentication Control
    • Open-Drain, 4mA/0.4V
    • Optional SHA-256 or ECDSA Authenticated On/Off and State Read
    • Optional ECDSA Certificate to Set On/Off after Multiblock Hash for Secure Boot
  • RNG with NIST SP 800-90B Compliant Entropy Source with Function to Read Out
  • Optional Chip Generated Pr/Pu Key Pairs for ECC Operations
  • 17-Bit One-Time Settable, Nonvolatile Decrement-Only Counter with Authenticated Read
  • 8Kbits of EEPROM for User Data, Keys, and Certificates
  • Unique and Unalterable Factory Programmed 64-Bit Identification Number (ROM ID)
    • Optional Input Data Component to Crypto and Key Operations
  • I2C Communication Up to 1MHz
  • Operating Range: 2.2V to 3.63V, -40°C to +85°C
  • 6-Pin TDFN Package

Applications/Uses

  • Accessory and Peripheral Secure Authentication
  • IoT Node Crypto-Protection
  • Secure Boot or Download of Firmware and/or System Parameters
  • Secure Storage of Cryptographic Keys for a Host Controller

Description

The DS28C36 is a DeepCover® secure authenticator that provides a core set of cryptographic tools derived from integrated asymmetric (ECC-P256) and symmetric (SHA-256) security functions. In addition to the security services provided by the hardware implemented crypto engines, the device integrates a FIPS/NIST true random number generator (RNG), 8Kb of secured EEPROM, a decrement-only counter, two pins of configurable GPIO, and a unique 64-bit ROM identification number (ROM ID).

The ECC public/private key capabilities operate from the NIST defined P-256 curve and include FIPS 186 compliant ECDSA signature generation and verification to support a bidirectional asymmetric key authentication model. The SHA-256 secret-key capabilities are compliant with FIPS 180 and are flexibly used either in conjunction with ECDSA operations or independently for multiple HMAC functions.

Two GPIO pins can be independently operated under command control and include configurability supporting authenticated and nonauthenticated operation including an ECDSA-based crypto-robust mode to support secure-boot of a host processor.

DeepCover embedded security solutions cloak sensitive data under multiple layers of advanced security to provide the most secure key storage possible. To protect against device-level security attacks, invasive and noninvasive countermeasures are implemented including active die shield, encrypted storage of keys, and algorithmic methods.

Explore security topics and test drive secure authenticators with the Maxim Security Lab


Secure Boot and Secure Download -
Part 1: Protecting IoT Devices with Secure Authentication


Secure Boot and Secure Download -
Part 3: Using the DS28C36


Secure Boot and Secure Download -
Part 2: Technologies Behind Embedded Security

Simplified Block Diagram

DS28C36: Typical Application Circuit DS28C36: Typical Application Circuit Zoom icon

Technical Docs

Data Sheet DeepCover Secure Authenticator Mar 01, 2019
Tutorial How Secure Authenticators and Coprocessors Can Simplify Cryptography
Tutorial Cryptography: Planning for Threats and Countermeasures
Tutorial Cryptography: Is a Hardware or Software Implementation More Effective?
Tutorial Cryptography: Fundamentals on the Modern Approach
Tutorial Cryptography: A Closer Look at the Algorithms
App Note Cryptography: How It Helps in Our Digital World
Tutorial Easily Add Memory, Security, Monitoring, and Control to Medical Sensors and Consumables
App Note Injection Molding an IC into a Connector or Consumable Item
User Guide MAXREFDES155# Quick Start Guide
App Note Implementing Secure Authentication Without Being a Cryptography Expert
App Note The Fundamentals of Secure Boot and Secure Download: How to Protect Firmware and Data within Embedded Devices
App Note How to Verify the DS28C36 ECDSA Certificate
App Note How to Authenticate DS28C36 Data (User Memory/GPIO/Decrement Counter) with ECDSA
App Note How to Generate a DS28C36 Session Key
User Guide DS28E39 Security User Guide
App Note Secure Authentication for Medical Disposables
App Note Why Now is a Good Time to Secure Your Embedded Systems with SHA-3
App Note Back to Basics: Secure Hash Algorithms

Support & Training

Search our knowledge base for answers to your technical questions.

Filtered Search

Our dedicated team of Applications Engineers are also available to answer your technical questions. Visit our support portal .