DS28E38
DeepCover® Secure ECDSA Authenticator with ChipDNA PUF Protection
Protect Your Design Using Crypto-Strong Authentication Secured with a Physically Unclonable Function
Maxim Confidential 
MyMaxim SubscriptionsProduct Details
Key Features
Applications/Uses
| Crypto Engine | Asymmetric Symmetric |
| End Equipment | IP Protection Medical Consumable ID Medical Sensor Authentication and Calibration PCB ID and Authentication Print Cartridge Authentication Printer Cartridge Configuration and Monitoring Rack Card Security |
| Bus Type | 1-Wire |
| Memory Type | EEPROM |
| Memory Size | 2K x 1 |
| Deep Cover | Yes |
| Oper. Temp. (°C) | -40 to +85 |
| Package/Pins | SFN, NIPD, HYB/2 TDFN/6 |
| Budgetary Price (See Notes) | 1.16 |
Simplified Block Diagram
Technical Docs
ECDSA Asymmetric Crypto Security with ChipDNA PUF Protection ›
On-Demand Webinar: Hardware Security with PUF Technology Support & Training
Search our knowledge base for answers to your technical questions.
Filtered SearchOur dedicated team of Applications Engineers are also available to answer your technical questions. Visit our support portal .
Parameters
| Crypto Engine | Asymmetric Symmetric |
| End Equipment | IP Protection Medical Consumable ID Medical Sensor Authentication and Calibration PCB ID and Authentication Print Cartridge Authentication Printer Cartridge Configuration and Monitoring Rack Card Security |
| Bus Type | 1-Wire |
| Memory Type | EEPROM |
| Memory Size | 2K x 1 |
| Deep Cover | Yes |
| Oper. Temp. (°C) | -40 to +85 |
| Package/Pins | SFN, NIPD, HYB/2 TDFN/6 |
| Budgetary Price (See Notes) | 1.16 |
Key Features
- Robust Countermeasures Protect Against Security Attacks
- Patented Physically Unclonable Function Secures Device Data
- Actively Monitored Die Shield Detects and Reacts to Intrusion Attempts
- All Stored Data Cryptographically Protected from Discovery
- Efficient Public-Key Authentication Solution to Authenticate Peripherals
- FIPS 186-Compliant ECDSA P256 Signature for Challenge/Response Authentication
- Options for ECDSA Public/Private Key Pair Source Include ChipDNA Generated, Chip Computed, and User Installed
- TRNG with NIST SP 800-90B Compliant Entropy Source
- Supplemental Features Enable Easy Integration into End Applications
- 17-Bit One-Time Settable, Nonvolatile Decrement-Only Counter with Authenticated Read
- 2Kbits of EEPROM for User Data, Key, Control Registers, and Certificate
- Unique and Unalterable Factory Programmed 64-Bit Identification Number (ROM ID)
- Single-Contact, 1-Wire Interface Communication with Host at 11.7kbps and 62.5kbps
- Operating Range: 3.3V ±10%, -40°C to +85°C
- 6-Pin TDFN-EP Package (3mm x 3mm)
- 2-Pad SFN Package (3.5mm x 6.5mm)
Applications/Uses
- Authentication of Medical Sensors and Tools
- IoT Node Authentication
- Peripheral Authentication
- Printer Cartridge Identification and Authentication
- Reference Design License Management
- Secure Management of Limited Use Consumables
Description
The DS28E38 is an ECDSA public key-based secure authenticator that incorporates Maxim’s patented ChipDNA™ PUF technology. ChipDNA technology involves a physically unclonable function (PUF) that enables the DS28E38 to deliver cost-effective protection against invasive physical attacks. Using the random variation of semiconductor device characteristics that naturally occur during wafer fabrication, the ChipDNA circuit generates a unique output value that is repeatable over time, temperature, and operating voltage. Attempts to probe or observe ChipDNA operation modifies the underlying circuit characteristics, preventing discovery of the unique value used by the chip cryptographic functions. The DS28E38 utilizes the ChipDNA output as key content to cryptographically secure all device stored data and optionally, under user control, as the private key for the ECDSA signing operation. With ChipDNA capability, the device provides a core set of cryptographic tools derived from integrated blocks including an asymmetric (ECC-P256) hardware engine, a FIPS/NIST-compliant true random number generator (TRNG), 2Kb of secured EEPROM, a decrement-only counter and a unique 64-bit ROM identification number (ROM ID). The ECC public/ private key capabilities operate from the NIST-defined P-256 curve to provide a FIPS 186-compliant ECDSA signature generation function. The unique ROM ID is used as a fundamental input parameter for cryptographic operations and serves as an electronic serial number within the application. The DS28E38 communicates over the single-contact 1-Wire® bus at both standard and overdrive speeds. The communication follows the 1-Wire protocol with the ROM ID acting as node address in the case of a multidevice 1-Wire network.
 | Explore security topics and test drive secure authenticators with the Maxim Security Lab |
 Read white paper › |  Read white paper › | |
 How to Setup the DS28E38 Evaluation Kit and Perform ECDSA Authentication |  ChipDNA–Defend Your IoT Designs from Hackers |
Also see: ChipDNA Technology ›
Technical Docs
Support & Training
Search our knowledge base for answers to your technical questions.
Filtered SearchOur dedicated team of Applications Engineers are also available to answer your technical questions. Visit our support portal .
Request a Quote