DS28C36：DeepCover Secure Authenticator _ BDTIC a Leading Distributor in China

DS28C36：DeepCover Secure Authenticator

Provides Affordable Elliptic-Curve Public-Key Authentication Security to Protect Your Development Investment

The DS28C36 is a secure authenticator that provides a core set of cryptographic tools derived from integrated asymmetric (ECC-P256) and symmetric (SHA-256) security functions. In addition to the security services provided by the hardware implemented crypto engines, the device integrates a FIPS/NIST true random number generator (RNG), 8Kb of secured EEPROM, a decrement-only counter, two pins of configurable GPIO, and a unique 64-bit ROM identification number (ROM ID). The ECC public/private key capabilities operate from the NIST defined P-256 curve and include FIPS 186 compliant ECDSA signature generation and verification to support a bidirectional asymmetric key authentication model. The SHA-256 secret-key capabilities are compliant with FIPS 180 and are flexibly used either in conjunction with ECDSA operations or independently for multiple HMAC functions. Two GPIO pins can be independently operated under command control and include configurability supporting authenticated and nonauthenticated operation including an ECDSA-based crypto-robust mode to support secure-boot of a host processor. DeepCover embedded security solutions cloak sensitive data under multiple layers of advanced security to provide the most secure key storage possible. To protect against device-level security attacks, invasive and noninvasive countermeasures are implemented including active die shield, encrypted storage of keys, and algorithmic methods.

Key Features

ECC-256 Compute Engine
- FIPS 186 ECDSA P256 Signature and Verification
- ECDH Key Exchange with Authentication Prevents Man-in-the-Middle Attacks
- ECDSA Authenticated R/W of Configurable Memory
FIPS 180 SHA-256 Compute Engine
- HMAC
SHA-256 OTP (One-Time Pad) Encrypted R/W of Configurable Memory Through ECDH Established Key
Two GPIO Pins with Optional Authentication Control
- Open-Drain, 4mA/0.4V
- Optional SHA-256 or ECDSA Authenticated On/Off and State Read
- Optional ECDSA Certificate to Set On/Off after Multiblock Hash for Secure Boot
RNG with NIST SP 800-90B Compliant Entropy Source with Function to Read Out
Optional Chip Generated Pr/Pu Key Pairs for ECC Operations
17-Bit One-Time Settable, Nonvolatile Decrement-Only Counter with Authenticated Read
8Kbits of EEPROM for User Data, Keys, and Certificates
Unique and Unalterable Factory Programmed 64-Bit Identification Number (ROM ID)
- Optional Input Data Component to Crypto and Key Operations
I2C Communication, 100kHz and 400kHz
Operating Range: 3.3V ±10%, -40°C to +85°C
6-Pin TDFN Package

DS28C36: Typical Application Circuit

Applications/Uses

Accessory and Peripheral Secure Authentication
IoT Node Crypto-Protection
Secure Boot or Download of Firmware and/or System Parameters
Secure Storage of Cryptographic Keys for a Host Controller

DataSheet

title	Download file
DS28C36 Data Sheet	DS28C36.pdf

Parametrics

Part Number	Applications	Memory Type	Memory Size	Bus Type	V_SUPPLY (V)	Deep Cover	Oper. Temp. (°C)	Package/Pins	Budgetary Price
Part Number	Applications	Memory Type	Memory Size	Bus Type	V_SUPPLY (V)	Deep Cover	Oper. Temp. (°C)	Package/Pins	See Notes
DS28C36	IP Protection Medical Consumable ID Medical Sensor Authentication and Calibration PCB ID and Authentication Print Cartridge Authentication Printer Cartridge Configuration and Monitoring Rack Card Security	EEPROM	4K x 1	I2C	2.97 to 3.63	Yes	-40 to +85	TDFN-EP/6	$1.08 @1k