General Description
The DS28E38 is an ECDSA public key-based secure
authenticator that incorporates Maxim’s patented
ChipDNA™ PUF technology. ChipDNA technology
involves a physically unclonable function (PUF) that
enables the DS28E38 to deliver cost-effective protec-
tion against invasive physical attacks. Using the random
variation of semiconductor device characteristics that
naturally occur during wafer fabrication, the ChipDNA
circuit generates a unique output value that is repeatable
over time, temperature, and operating voltage. Attempts
to probe or observe ChipDNA operation modifies the
underlying circuit characteristics, preventing discovery
of the unique value used by the chip cryptographic func-
tions. The DS28E38 utilizes the ChipDNA output as key
content to cryptographically secure all device stored data
and optionally, under user control, as the private key for
the ECDSA signing operation. With ChipDNA capabil-
ity, the device provides a core set of cryptographic tools
derived from integrated blocks including an asymmetric
(ECC-P256) hardware engine, a FIPS/NIST-compliant
true random number generator (TRNG), 2Kb of secured
EEPROM, a decrement-only counter and a unique 64-bit
ROM identification number (ROM ID). The ECC public/
private key capabilities operate from the NIST-defined
P-256 curve to provide a FIPS 186-compliant ECDSA
signature generation function. The unique ROM ID is
used as a fundamental input parameter for cryptographic
operations and serves as an electronic serial number
within the application. The DS28E38 communicates over
the single-contact 1-Wire® bus at both standard and
overdrive speeds. The communication follows the 1-Wire
protocol with the ROM ID acting as node address in the
case of a multidevice 1-Wire network.
Applications
● Authentication of Medical Sensors and Tools
● Secure Management of Limited Use Consumables
● IoT Node Authentication
● Peripheral Authentication
● Reference Design License Management
● Printer Cartridge Identification and Authentication
Ordering Information appears at end of data sheet.
19-100093; Rev 1; 9/17
Benets and Features
● Robust Countermeasures Protect Against Security
Attacks
• Patented Physically Unclonable Function Secures
Device Data
• Actively Monitored Die Shield Detects and Reacts
to Intrusion Attempts
• All Stored Data Cryptographically Protected from
Discovery
● Efficient Public-Key Authentication Solution to
Authenticate Peripherals
• FIPS 186-Compliant ECDSA P256 Signature for
Challenge/Response Authentication
• Options for ECDSA Public/Private Key Pair Source
Include ChipDNA Generated, Chip Computed, and
User Installed
• TRNG with NIST SP 800-90B Compliant Entropy
Source
● Supplemental Features Enable Easy Integration into
End Applications
• 17-Bit One-Time Settable, Nonvolatile Decrement-
Only Counter with Authenticated Read
• 2Kbits of EEPROM for User Data, Key, Control
Registers, and Certicate
• Unique and Unalterable Factory Programmed
64-Bit Identication Number (ROM ID)
• Single-Contact, 1-Wire Interface Communication
with Host at 11.7kbps and 62.5kbps
• Operating Range: 3.3V ±10%, -40°C to +85°C
• 6-Pin TDFN-EP Package (3mm x 3mm)
DeepCover and 1-Wire are registered trademarks and
ChipDNA is a trademark of Maxim Integrated Products, Inc.
Request Security User Guide and Developer Software ›
DS28E38 DeepCover® Secure ECDSA Authenticator
with ChipDNA PUF Protection
EVALUATION KIT AVAILABLE
