OMO ElectronicOMO Electronic
Expand menu
Hello, Sign inMy Account
0 Cart

ATAES132-SH-EQ-T

P1-P3P4-P6P7-P9P10-P12P13-P15P16-P17
ATAES132 [SPI SUMMARY DATASHEET]
Atmel-8763DS-CryptoAuth-ATAES132-SPI-Datasheet-Summary_072014
4
2.3 Configuration Memory
The Configuration Memory offers the ability to customize access rights to different resources of the device as a means to
tailor the various security features of the device to one’s specific application. This customizing, formally known as
personalization, grants the application owner the ability to define custom access rights to device resources, from
counters and key usage to memory. After personalization, the application owner issues lock commands to render the
configuration permanent and to forever seal security keys and information in user zones configured to be confidential.
The Configuration Memory supports multi-step workflows to support the use of third-party services like programming
without compromising the content or application security. In addition, Atmel offers optional, value-add programming
services through the use of hardware security modules, which allow application owners to virtually inject their secrets into
the ATAES132.
Table 2-1. Summary of Configuration Table Parameters, Sorted by Name
Name Description Write Read Bytes
Algorithm Algorithm ID Code (0x0000). Never Always 2
ChipConfig Device level cryptographic and power-up configuration options.
If Lockconfig =
Unlocked
Always 1
Counters 16 monotonic counters, each capable of counting to 2M.
If Lockconfig =
Unlocked
Always 128
CounterConfig Configuration information for each counter.
If Lockconfig =
Unlocked
Always 32
DeviceNum Atmel device number code. Never Always 1
EEPageSize Length in bytes of physical EEPROM page (32, 0x20). Never Always 1
EncReadSize Maximum data length in bytes for EncRead (32, 0x20). Never Always 1
EncWriteSize Maximum data length in bytes for EncWrite (32, 0x20). Never Always 1
FreeSpace Free memory for customer data storage.
If Lockconfig =
Unlocked
Always 96
JEDEC Atmel JEDEC manufacturer code 0x001F. Never Always 2
KeyConfig Configuration information for each key.
If Lockconfig =
Unlocked
Always 64
LockConfig
(1)
Controls Configuration Memory Write access except SmallZone.
Default is the Unlocked state.
Via Lock
Command Only
Always 1
LockKeys
(1)
Controls Key Memory Write Access. Default is the ‘unlocked’ state.
Via Lock
Command Only
Always 1
LockSmall
(1)
Controls SmallZone Register Write access. Default is the ‘unlocked’
state
.
Via Lock
Command Only
Always 1
LotHistory Atmel proprietary manufacturing information Never Always 8
Note: 1. Changes to most of the configuration registers take effect immediately which allows the functionality to
be tested during the personalization process. Changes to the I2C Addr register take effect at the next
Reset, Power-Up, or Wake-Up from the Sleep state.
5
ATAES132 [SPI SUMMARY DATASHEET]
Atmel-8763DS-CryptoAuth-ATAES132-SPI-Datasheet-Summary_072014
2.4 Counters
The Counters region contains 16 nonreversible monotonic counters. Counter operation is customized during
personalization in the Configuration Memory to permit such features as free use, authenticated-only increments, and
control of key usage.
2.5 Key Memory
Key Memory holds sixteen 128-bit keys targeting various AES and AES-CCM operations. Key usage is customized
during personalization in the Configuration Memory to permit custom features like authentication-only, limited-use,
counter increment, user zone access, key permissions, and many other uses. The Key Memory is writeable only during
personalization, and is never readable under any circumstances. One may only use an authentication procedure to
validate the content of a key; however, ATAES132 offers a set of commands which, when so configured during
personalization, permits secure key creation, imports, and transfer of content from a confidential User Memory to key
space.
2.6 SmallZone
SmallZone is a 32-byte, general-purpose memory separate from the 32Kb user memory and with special features to aid
multi-step workflows. Configuration at personalization may make portions of this zone a mandatory input into
cryptographic calculations.
2.7 I/O Support
The I/O Support regions contains a FIFO and other registers, which together provide a means to send the ATAES132
commands and receive responses, including status information.
3. Commands
The ATAES132 extends the command set of a standard Serial EEPROM to offer additional commands that solve various
security challenges. Unrestricted memory regions are accessible using standard Serial EEPROM SPI commands.
Restricted User Memory regions, as well as security features, are still accessible by using standard SPI commands to
ManufacturingID Two byte manufacturing ID code Never Always 2
PermConfig Atmel factory device configuration options Never Always 1
SerialNum
Guaranteed unique die serial number. SerialNum is optionally
included in cryptographic calculations.
Never Always 8
SmallZone
32 byte value. The first four bytes are optionally included in
cryptographic calculations.
If Locksmall =
Unlocked
Always 32
I2C Addr
Selects the serial interface mode and stores the I
2
C device
address.
If LockConfig =
Unlocked
Always 1
ZoneConfig Access and usage permissions for each user zone.
If LockConfig =
Unlocked
Always 64
Table 2-1. Summary of Configuration Table Parameters, Sorted by Name (Continued)
Name Description Write Read Bytes
Note: 1. Changes to most of the configuration registers take effect immediately which allows the functionality to
be tested during the personalization process. Changes to the I2C Addr register take effect at the next
Reset, Power-Up, or Wake-Up from the Sleep state.
ATAES132 [SPI SUMMARY DATASHEET]
Atmel-8763DS-CryptoAuth-ATAES132-SPI-Datasheet-Summary_072014
6
send extended command bytes to a FIFO address. Responses are read using standard SPI commands from same FIFO
address.
Table 3-1. ATAES132 Extended Command Set Summary
Opcode Name Description
0x03 Auth Performs one-way or mutual authentication using the specified key.
0x15 AuthCheck
Checks the output MAC generated by the Auth command or by reading a counter using the
Counter command on a second ATAES132 device.
0x14 AuthCompute
Computes the input MAC required to execute the Auth command or to increment a counter
using the Counter command on a second ATAES132 device.
0x10 BlockRead
Reads 1 to 32 bytes of data from User Memory or the Configuration Memory. Returns cleartext
data.
0x0A Counter Increments a monontonic counter and/or returns the counter value.
0x0B Crunch
Processes a seed value through the internal crunch engine. This function is used to detect
clones.
0x07 Decrypt Decrypts 16 or 32 bytes of data provided by the Host after verifying the integrity MAC.
0x04 EncRead
Encrypts 1 to 32 bytes of data from User Memory and returns the encrypted data and integrity
MAC.
0x06 Encrypt Encrypts 16 or 32 bytes of plaintext data provided by the Host.
0x05 EncWrite
Writes 1 to 32 bytes of encrypted data into the User Memory or Key Memory after verifying the
integrity MAC.
0x0C Info
Returns device information: the MacCount, authentication status, or the hardware revision
code.
0x08 KeyCreate
Generates a random number, stores it in Key Memory, and returns the encrypted key to the
Host.
0x19 KeyImport Decrypts and writes a key that was output by the KeyCreate command.
0x09 KeyLoad Writes an encrypted key to Key Memory after verifying the integrity MAC.
0x1A KeyTransfer Transfers a key from User Memory to the Key Memory or to the VolatileKey Register.
0x0F Legacy Performs a single AES-ECB mode operation on 16 bytes of data provided by the Host.
0x0D Lock
Permanently locks the Configuration Memory or Key Memory. Locked memory can never be
unlocked.
0x01 Nonce
Generates a 128-bit nonce using the internal random number generator for use by the
cryptographic commands. This command can also be used to write a host nonce directly into
the Nonce Register.
0x13 NonceCompute
Generates a nonce in a manner that allows two ATAES132 devices to have identical nonce
values.
P1-P3P4-P6P7-P9P10-P12P13-P15P16-P17

ATAES132-SH-EQ-T

Mfr. #:
Buy ATAES132-SH-EQ-T
Manufacturer:
Microchip Technology / Atmel
Description:
Security ICs / Authentication ICs AES 32Kbit EE SPI
Lifecycle:
New from this manufacturer.
Delivery:
DHL FedEx Ups TNT EMS
Payment:
T/T Paypal Visa MoneyGram Western Union

Products related to this Datasheet