ATECC608A-MAHDA-S Datasheet ATECC608A-MAHDA-T, ATECC608A-MAHDA-S, ATECC608A-MAHCZ-T | P4-P6

Trademarks................................................................................................................... 26

Quality Management System Certified by DNV.............................................................27

Worldwide Sales and Service........................................................................................28

ATECC608A

Datasheet Summary

DS40001977A-page 4

1. Introduction

1.1 Applications

The ATECC608A is a member of the Microchip CryptoAuthentication

™

family of high-security

cryptographic devices which combine world-class hardware-based key storage with hardware

cryptographic accelerators to implement various authentication and encryption protocols.

The ATECC608A has a flexible command set that allows use in many applications, including the

following:

• Network/IoT Node Endpoint Security

Manage node identity authentication and session key creation & management. Supports the entire

ephemeral session key generation flow for multiple protocols including TLS 1.2 (and earlier) and

TLS 1.3

• Secure Boot

Support the MCU host by validating code digests and optionally enabling communication keys on

success. Various configurations to offer enhanced performance are available.

• Small Message Encryption

Hardware AES engine to encrypt and/or decrypt small messages or data such as PII information.

Supports AES-ECB mode directly. Other modes can be implemented with the help of the host

microcontroller. Additional GFM calculation function to support AES-GCM.

• Key Generation for Software Download

Supports local protected key generation for downloaded images. Both broadcast of one image to

many systems, each with the same decryption key, or point-to-point download of unique images per

system is supported.

• Ecosystem control and Anti-Counterfeiting

Validates that a system or component is authentic and came from the OEM shown on the

nameplate.

The ATECC608A is generally compatible with the ATECC508A when properly configured. See Section

Microchip ATECC508A for more details.

1.2 Device Features

The ATECC608A includes an EEPROM array which can be used for storage of up to 16 keys, certificates,

miscellaneous read/write, read-only or secret data, consumption logging, and security configurations.

Access to the various sections of memory can be restricted in a variety of ways and then the

configuration can be locked to prevent changes.

Access to the device is made through a standard I

C Interface at speeds of up to 1 Mb/s. The interface is

compatible with standard Serial EEPROM I

C interface specifications. The device also supports a Single-

Wire Interface (SWI), which can reduce the number of GPIOs required on the system processor, and/or

reduce the number of pins on connectors. If the Single-Wire Interface is enabled, the remaining pin is

available for use as a GPIO, an authenticated output or tamper input.

Each ATECC608A ships with a guaranteed unique 72-bit serial number. Using the cryptographic

protocols supported by the device, a host system or remote server can verify a signature of the serial

number to prove that the serial number is authentic and not a copy. Serial numbers are often stored in a

ATECC608A

Introduction

Datasheet Summary

DS40001977A-page 5

standard Serial EEPROM; however, these can be easily copied with no way for the host to know if the

serial number is authentic or if it is a clone.

The ATECC608A features a wide array of defense mechanisms specifically designed to prevent physical

attacks on the device itself, or logical attacks on the data transmitted between the device and the system.

Hardware restrictions on the ways in which keys are used or generated provide further defense against

certain styles of attack.

1.3 Cryptographic Operation

The ATECC608A implements a complete asymmetric (public/private) key cryptographic signature solution

based upon Elliptic Curve Cryptography and the ECDSA signature protocol. The device features

hardware acceleration for the NIST standard P256 prime curve and supports the complete key life cycle

from high quality private key generation, to ECDSA signature generation, ECDH key agreement, and

ECDSA public key signature verification.

The hardware accelerator can implement such asymmetric cryptographic operations from ten to one-

thousand times faster than software running on standard microprocessors, without the usual high risk of

key exposure that is endemic to standard microprocessors.

The ATECC608A also implements AES-128, SHA256 and multiple SHA derivatives such as HMAC(SHA),

PRF (the key derivation function in TLS) and HKDF in hardware. Support is included for the Galois Field

Multiply (aka Ghash) to facilitate GCM encryption/decryption/authentication.

The device is designed to securely store multiple private keys along with their associated public keys and

certificates. The signature verification command can use any stored or an external ECC public key. Public

keys stored within the device can be configured to require validation via a certificate chain to speed-up

subsequent device authentications.

Random private key generation is supported internally within the device to ensure that the private key can

never be known outside of the device. The public key corresponding to a stored private key is always

returned when the key is generated and it may optionally be computed at a later time.

The ATECC608A can generate high-quality random numbers using its internal random number generator.

This sophisticated function includes runtime health testing designed to ensure that the values generated

from the internal noise source contain sufficient entropy at the current time, with the current device and

under the current voltage and temperature conditions. The random number generator is designed to meet

the requirements documented in the NIST 800-90A, 800-90B and 800-90C documents.

These random numbers can be employed for any purpose, including usage as part of the device’s crypto

protocols. Because each random number is guaranteed to be essentially unique from all numbers ever

generated on this or any other device, their inclusion in the protocol calculation ensures that replay

attacks (i.e. re-transmitting a previously successful transaction) will always fail.

The ATECC608A also supports a standard hash-based challenge-response protocol in order to allow its

use across a wide variety of additional applications. In its most basic instantiation, the system sends a

challenge to the device, which combines that challenge with a secret key via the MAC command and then

sends the response back to the system. The device uses a SHA-256 cryptographic hash algorithm to

make that combination so that an observer on the bus cannot derive the value of the secret key, but

preserving that ability of a recipient to verify that the response is correct by performing the same

calculation with a stored copy of the secret on the recipient’s system. There are a wide variety of

variations possible on this symmetric challenge/response theme.

ATECC608A

Introduction

Datasheet Summary

DS40001977A-page 6

P1-P3 P4-P6 P7-P9 P10-P12 P13-P15 P16-P18 P19-P21 P22-P24 P25-P27 P28-P28

ATECC608A-MAHDA-S

Mfr. #:

Buy ATECC608A-MAHDA-S

Manufacturer:

Microchip Technology

Description:

Security ICs / Authentication ICs ECC/ECDSA/ECDHE I2C small 3K reel UDFN

Lifecycle:

New from this manufacturer.

Delivery:

DHL FedEx Ups TNT EMS

Payment:

T/T Paypal Visa MoneyGram Western Union

ATECC608A-MAHDA-S

ATECC608A-MAHDA-S

Products related to this Datasheet