Overview

General Description

The DS28E30 provides a highly secure and easily deployed turnkey authentication solution based on the FIPS-186 ECDSA standard. The secure authenticator combines ECDSA challenge and response authentication with secured EEPROM for the storage of the keys and user data.

The device provides a core set of cryptographic tools derived from integrated blocks including an asymmetric hardware engine, a true random number generator (TRNG), 3Kb of secure EEPROM, a decrement-only counter, and a unique 64-bit ROM identification number (ROM ID). The ECC public/private key capabilities operate from the NIST-defined P-256 curve to provide a FIPS 186-compliant ECDSA signature generation function to support a bidirectional asymmetric key authentication model. The unique ROM ID is used as a fundamental input parameter for cryptographic operations and serves as an electronic serial number within the application. In addition, authenticity of the chip can be verified with a Maxim-provided public key certificate. The device communicates over the single-contact 1-Wire® bus at overdrive speed. The communication follows the 1-Wire protocol with the ROM ID acting as a node address in the case of a multidevice 1-Wire network.
Typical Application Circuit
Benefits and Features
  • Robust Countermeasures Protect Against Security Attacks
    • All Stored Data Cryptographically Protected from Discovery
  • ECC P-256 Secure Compute Engine
    • Preprogrammed and Write-Protected ECC P-256 Key Pair
    • FIPS 186-4 Compliant ECDSA for Strong Challenge/Response Authentication
    • ECDSA Authenticated R/W of Configurable Memory
  • SP800-90B TRNG Used for Secure ECDSA Nonces
  • Supplemental Features Enable Easy Integration into End Applications
    • 17-Bit, One-Time Settable, Nonvolatile Decrement-Only Counter with Authenticated Read
    • 3Kb of Secure EEPROM for User Data, Keys, Certificate, and Secure Counter
    • Unique and Unalterable Factory-Programmed, 64-Bit Identification Number (ROM ID)
    • Authenticity Verification with ECDSA Using Preprogrammed Maxim Certificate
    • Advanced 1-Wire Protocol Minimizes Interface to Single Contact
    • Full-Time Overdrive Communication Speed
    • Operating Range: -40°C to +85°C, 1.62V to 5V
    • 4-Bump WLP and 6-Pin TSOC Packages
    • 3.5µA (typ) Input Load Current
    • High ESD Immunity of 1-Wire Pin: ±8kV Human Body Model (HBM), typ
Applications
  • Battery Authentication and Charge Cycle Tracking
  • Medical Tools/Accessories Authentication and Calibration
  • Accessory and Peripheral Secure Authentication


1-Wire is a registered trademark of Maxim Integrated Products, Inc.


19-101194; Rev 2; 9/22