DS28E38
DeepCover® Secure ECDSA Authenticator with ChipDNA PUF Protection
Protect Your Design Using Crypto-Strong Authentication Secured with a Physically Unclonable Function
Maxim Confidential 
MyMaxim SubscriptionsProduct Details
The DS28E38 is an ECDSA public key-based secure authenticator that incorporates Maxim’s patented ChipDNA™ PUF technology. ChipDNA technology involves a physically unclonable function (PUF) that enables the DS28E38 to deliver cost-effective protection against invasive physical attacks. Using the random variation of semiconductor device characteristics that naturally occur during wafer fabrication, the ChipDNA circuit generates a unique output value that is repeatable over time, temperature, and operating voltage. Attempts to probe or observe ChipDNA operation modifies the underlying circuit characteristics, preventing discovery of the unique value used by the chip cryptographic functions. The DS28E38 utilizes the ChipDNA output as key content to cryptographically secure all device stored data and optionally, under user control, as the private key for the ECDSA signing operation. With ChipDNA capability, the device provides a core set of cryptographic tools derived from integrated blocks including an asymmetric (ECC-P256) hardware engine, a FIPS/NIST-compliant true random number generator (TRNG), 2Kb of secured EEPROM, a decrement-only counter and a unique 64-bit ROM identification number (ROM ID). The ECC public/ private key capabilities operate from the NIST-defined P-256 curve to provide a FIPS 186-compliant ECDSA signature generation function. The unique ROM ID is used as a fundamental input parameter for cryptographic operations and serves as an electronic serial number within the application. The DS28E38 communicates over the single-contact 1-Wire® bus at both standard and overdrive speeds. The communication follows the 1-Wire protocol with the ROM ID acting as node address in the case of a multidevice 1-Wire network.
 | Explore security topics and test drive secure authenticators with the Maxim Security Lab |
 Read white paper › |  Read white paper › | |
 How to Setup the DS28E38 Evaluation Kit and Perform ECDSA Authentication |  ChipDNA–Defend Your IoT Designs from Hackers |
Also see: ChipDNA Technology ›
Key Features
- Robust Countermeasures Protect Against Security Attacks
- Patented Physically Unclonable Function Secures Device Data
- Actively Monitored Die Shield Detects and Reacts to Intrusion Attempts
- All Stored Data Cryptographically Protected from Discovery
- Efficient Public-Key Authentication Solution to Authenticate Peripherals
- FIPS 186-Compliant ECDSA P256 Signature for Challenge/Response Authentication
- Options for ECDSA Public/Private Key Pair Source Include ChipDNA Generated, Chip Computed, and User Installed
- TRNG with NIST SP 800-90B Compliant Entropy Source
- Supplemental Features Enable Easy Integration into End Applications
- 17-Bit One-Time Settable, Nonvolatile Decrement-Only Counter with Authenticated Read
- 2Kbits of EEPROM for User Data, Key, Control Registers, and Certificate
- Unique and Unalterable Factory Programmed 64-Bit Identification Number (ROM ID)
- Single-Contact, 1-Wire Interface Communication with Host at 11.7kbps and 62.5kbps
- Operating Range: 3.3V ±10%, -40°C to +85°C
- 6-Pin TDFN-EP Package (3mm x 3mm)
- 2-Pad SFN Package (3.5mm x 6.5mm)
Applications/Uses
- Authentication of Medical Sensors and Tools
- IoT Node Authentication
- Peripheral Authentication
- Printer Cartridge Identification and Authentication
- Reference Design License Management
- Secure Management of Limited Use Consumables
| Crypto Engine | Asymmetric Symmetric |
| Applications | IP Protection Medical Consumable ID Medical Sensor Authentication and Calibration PCB ID and Authentication Print Cartridge Authentication Printer Cartridge Configuration and Monitoring Rack Card Security |
| Bus Type | 1-Wire |
| Memory Type | EEPROM |
| Memory Size | 2K x 1 |
| Deep Cover | Yes |
| Oper. Temp. (°C) | -40 to +85 |
| Package/Pins | SFN, NIPD, HYB/2 TDFN/6 |
| Budgetary Price (See Notes) | $1.09 @1k |
Technical Docs
Click any title below to view the detail page where available.
ECDSA Asymmetric Crypto Security with ChipDNA PUF Protection ›
On-Demand Webinar: Hardware Security with PUF Technology Description
The DS28E38 evaluation system (EV system) provides the hardware and software necessary to exercise the features of the DS28E38 and DS2476. The EV system consists of five DS28E38/DS2476 devices in a 6-pin TDFN package, a DS9121AQ+ evaluation TDFN socket board, and a DS9481P-300# USB-to-I2C/1-Wire® adapter. The evaluation software runs under Windows® 10, Windows 8, and Windows 7 operating systems, both 64-bit and 32-bit versions. It provides a handy user interface to exercise the features of the DS28E38 and DS2476.
Also see: ChipDNA™ Technology ›
How to Setup the DS28E38 Evaluation Kit and Perform ECDSA Authentication | ChipDNA–Defend Your IoT Designs from Hackers | Read white paper › |
Features
- Demonstrates the Features of the DS28E38 DeepCover® Secure Authenticator with ChipDNA PUF Protection
- Demonstrates the Features of the DS2476 DeepCover Secure Coprocessor
- 1-Wire/I2C Communication Is Logged to Aid Firmware Designers Understanding of DS28E38 and DS2476
- 1-Wire/I2C USB Adapter Creates a Virtual COM Port on Any PC
- Fully Compliant with USB Specification v2.0
- Software Runs on Windows 10, Windows 8, and Windows 7 for Both 64-Bit and 32-Bit Versions
- 3.3V ± 3% 1-Wire Operating Voltage
- Convenient On-Board Test Points, TDFN Socket
- Evaluation Software Available by Request
Support & Training
Search our knowledge base for answers to your technical questions.
Filtered SearchOur dedicated team of Applications Engineers are also available to answer your technical questions. Visit our support portal
Parameters
| Crypto Engine | Asymmetric Symmetric |
| Applications | IP Protection Medical Consumable ID Medical Sensor Authentication and Calibration PCB ID and Authentication Print Cartridge Authentication Printer Cartridge Configuration and Monitoring Rack Card Security |
| Bus Type | 1-Wire |
| Memory Type | EEPROM |
| Memory Size | 2K x 1 |
| Deep Cover | Yes |
| Oper. Temp. (°C) | -40 to +85 |
| Package/Pins | SFN, NIPD, HYB/2 TDFN/6 |
| Budgetary Price (See Notes) | $1.09 @1k |
Key Features
- Robust Countermeasures Protect Against Security Attacks
- Patented Physically Unclonable Function Secures Device Data
- Actively Monitored Die Shield Detects and Reacts to Intrusion Attempts
- All Stored Data Cryptographically Protected from Discovery
- Efficient Public-Key Authentication Solution to Authenticate Peripherals
- FIPS 186-Compliant ECDSA P256 Signature for Challenge/Response Authentication
- Options for ECDSA Public/Private Key Pair Source Include ChipDNA Generated, Chip Computed, and User Installed
- TRNG with NIST SP 800-90B Compliant Entropy Source
- Supplemental Features Enable Easy Integration into End Applications
- 17-Bit One-Time Settable, Nonvolatile Decrement-Only Counter with Authenticated Read
- 2Kbits of EEPROM for User Data, Key, Control Registers, and Certificate
- Unique and Unalterable Factory Programmed 64-Bit Identification Number (ROM ID)
- Single-Contact, 1-Wire Interface Communication with Host at 11.7kbps and 62.5kbps
- Operating Range: 3.3V ±10%, -40°C to +85°C
- 6-Pin TDFN-EP Package (3mm x 3mm)
- 2-Pad SFN Package (3.5mm x 6.5mm)
Applications/Uses
- Authentication of Medical Sensors and Tools
- IoT Node Authentication
- Peripheral Authentication
- Printer Cartridge Identification and Authentication
- Reference Design License Management
- Secure Management of Limited Use Consumables
Description
The DS28E38 is an ECDSA public key-based secure authenticator that incorporates Maxim’s patented ChipDNA™ PUF technology. ChipDNA technology involves a physically unclonable function (PUF) that enables the DS28E38 to deliver cost-effective protection against invasive physical attacks. Using the random variation of semiconductor device characteristics that naturally occur during wafer fabrication, the ChipDNA circuit generates a unique output value that is repeatable over time, temperature, and operating voltage. Attempts to probe or observe ChipDNA operation modifies the underlying circuit characteristics, preventing discovery of the unique value used by the chip cryptographic functions. The DS28E38 utilizes the ChipDNA output as key content to cryptographically secure all device stored data and optionally, under user control, as the private key for the ECDSA signing operation. With ChipDNA capability, the device provides a core set of cryptographic tools derived from integrated blocks including an asymmetric (ECC-P256) hardware engine, a FIPS/NIST-compliant true random number generator (TRNG), 2Kb of secured EEPROM, a decrement-only counter and a unique 64-bit ROM identification number (ROM ID). The ECC public/ private key capabilities operate from the NIST-defined P-256 curve to provide a FIPS 186-compliant ECDSA signature generation function. The unique ROM ID is used as a fundamental input parameter for cryptographic operations and serves as an electronic serial number within the application. The DS28E38 communicates over the single-contact 1-Wire® bus at both standard and overdrive speeds. The communication follows the 1-Wire protocol with the ROM ID acting as node address in the case of a multidevice 1-Wire network.
| Explore security topics and test drive secure authenticators with the Maxim Security Lab |
| Read white paper › | Read white paper › | |
| How to Setup the DS28E38 Evaluation Kit and Perform ECDSA Authentication | ChipDNA–Defend Your IoT Designs from Hackers |
Also see: ChipDNA Technology ›
Technical Docs
Support & Training
Search our knowledge base for answers to your technical questions.
Filtered SearchOur dedicated team of Applications Engineers are also available to answer your technical questions. Visit our support portal
Request a Quote