 |
Electronic Components Datasheet Search |
|
|
Electronic Components Datasheet Search |
|
ATSHA204-SH-DA-B Datasheet(PDF) 9 Page - ATMEL Corporation |
|
||||||||||||||||||||||||||||||
ATSHA204-SH-DA-B Datasheet(HTML) 9 Page - ATMEL Corporation |
|
|
9 / 65 page  Atmel ATSHA204 [DATASHEET] 9 8740D −CRYPTO−3/12 The IsSecret bit controls internal circuitry necessary for proper security for slots in which reads and/or writes must be encrypted or are prohibited altogether. It must also be set for all slots that are to be used as keys, including those created or modified with DeriveKey. Specifically, to enable proper device operation, this bit must be set unless WriteConfig is “always.” 4-byte accesses are prohibited to/from slots in which this bit is set. Slots used to store key values should always have IsSecret set to one and EncryptRead set to zero (reads prohibited) for maximum security. For fixed key values, WriteConfig should be set to “never.” When configured in this way, there is no way to read or write the key after the data zone is locked – it may only be used for crypto operations. Some security policies require that secrets be updated from time to time. The ATSHA204 supports this capability in the following way: WriteConfig for the particular slot should be set to “Encrypt” and SlotConfig.WriteKey should point back to the same slot by setting WriteKey to the slot ID. A standard Write command can be then used to write a new value to this slot provided that the authentication MAC is computed using the old (current) key value. 2.1.1.2 Special Memory Values in the Config Zone (Bytes 0 – 12) Various fixed information is included in the ATSHA204 that can never be written under any circumstances and can always be read, regardless of the state of the lock bits. • SerialNum Nine bytes (SN[0:8]) which together form a unique value that is never repeated for any device in the CryptoAuthentication family. The serial number is divided into two groups: 1. SN[0:1] and SN[8] The values of these bits are fixed at manufacturing time in most versions of the Atmel ATSHA204. Their default value is 0x01 23 EE. These 24 bits are always included in the SHA-256 computations made by the Atmel ATSHA204. 2. SN[2:3] and SN[4:7] The values of these bits are programmed by Atmel during the manufacturing process and are different for every die. These 48 bits are optionally included in some SHA-256 computations made by the Atmel ATSHA204. • RevNum Four bytes of information that are used by Atmel to provide manufacturing revision information. These bytes can be freely read as RevNum[0:3], but should never be used by system software, as they may vary from time to time. 2.1.2 Device Locking There are two separate lock states for the device: 1. One to lock the configuration zone (controlled by LockConfig, byte 87) 2. Second to lock both the OTP and data zones (controlled by LockValue, byte 86) These lock bits are stored within separate bytes in the configuration zone, and can be modified only through the Lock command. After a memory zone is locked, there is no way to unlock it. The device should be personalized at the system manufacturer with the desired configuration information, after which the configuration zone should be locked. When this lock is complete, all necessary writes of public and secret information into the EEPROM slots should be performed, using encrypted writes if appropriate. Upon completion of any writes, the data and OTP sections should be locked. Contact Atmel for optional secure personalization services. It is vital that the data and OTP sections be locked prior to release of the system containing the device into the field. Failure to lock these zones may permit modification of any secret keys and may lead to other security problems. Any attempt to read or write the data or OTP sections prior to locking the configuration section causes the device to return an error. |
Similar Part No. - ATSHA204-SH-DA-B |
|
Similar Description - ATSHA204-SH-DA-B |
|
|
Link URL |
| Privacy Policy |
| ALLDATASHEET.COM |
| Does ALLDATASHEET help your business so far? [ DONATE ] |
About Alldatasheet | Advertisement | Datasheet Upload | Contact us | Privacy Policy | Link Exchange | Manufacturer List All Rights Reserved©Alldatasheet.com |
| Russian : Alldatasheetru.com | Korean : Alldatasheet.co.kr | Spanish : Alldatasheet.es | French : Alldatasheet.fr | Italian : Alldatasheetit.com Portuguese : Alldatasheetpt.com | Polish : Alldatasheet.pl | Vietnamese : Alldatasheet.vn Indian : Alldatasheet.in | Mexican : Alldatasheet.com.mx | British : Alldatasheet.co.uk | New Zealand : Alldatasheet.co.nz |
|
Family Site : ic2ic.com |
icmetro.com |
English ▼
English
Chinese
German
Japanese
Russian
Korean
Spanish
French
Italian
Portuguese
Polish
Vietnamese
Indian
Mexican
British
New Zealand
