ATSHA204 ATMEL [ATMEL Corporation], ATSHA204 Datasheet - Page 16
ATSHA204
Manufacturer Part Number
ATSHA204
Description
Atmel CryptoAuthentication
Manufacturer
ATMEL [ATMEL Corporation]
Datasheet
1.ATSHA204.pdf
(65 pages)
Available stocks
Company
Part Number
Manufacturer
Quantity
Price
Company:
Part Number:
ATSHA204-MAH-DA-T
Manufacturer:
NVIDIA
Quantity:
340
Part Number:
ATSHA204-SH-DA-B
Manufacturer:
ATMEL/爱特梅尔
Quantity:
20 000
Part Number:
ATSHA204-SH-DA-T
Manufacturer:
ATMEL/爱特梅尔
Quantity:
20 000
Company:
Part Number:
ATSHA204-TSU-T
Manufacturer:
EPSON
Quantity:
418
Part Number:
ATSHA204-TSU-T
Manufacturer:
ATMEL/爱特梅尔
Quantity:
20 000
Part Number:
ATSHA204A
Manufacturer:
ATMEL/爱特梅尔
Quantity:
20 000
Part Number:
ATSHA204A-MAHDA-T
Manufacturer:
AT
Quantity:
20 000
Company:
Part Number:
ATSHA204A-SSHDA-B
Manufacturer:
ATMEL
Quantity:
3 450
Company:
Part Number:
ATSHA204A-SSHDA-T
Manufacturer:
ATMEL
Quantity:
3 450
Company:
Part Number:
ATSHA204A-STUCZ-T
Manufacturer:
ATMEL
Quantity:
12 000
3.4
3.4.1
3.4.2
For GenDig and all other commands, KeyID values less than 0x8000 always reference keys that are stored in the data zone of
the EEPROM. In these cases, only the four least-significant bits of KeyID are used to determine the slot number, while the
entire 16-bit KeyID as input is used in any SHA-256 message calculation.
Security Features
Physical Security
The ATSHA204 incorporates a number of physical security features designed to protect the EEPROM contents from
unauthorized exposure. The security measures include:
Pre-programmed transport keys stored on the ATSHA204 are encrypted in such a way as to make retrieval of their values
using outside analysis very difficult.
Both the logic clock and logic supply voltage are internally generated, preventing any direct attack on these two signals using
the pins of the device.
Random Number Generator (RNG)
The ATSHA204 includes a high-quality random number generator that returns 32 random bytes to the system. The device
combines this generated number with a separate input number to form a nonce that is stored within the device in TempKey
and may be used by subsequent commands.
The system may use this random number generator for any purpose. One common purpose would be as the input challenge
to the MAC command on a separate CryptoAuthentication device. The device provides a special Random command for such
purposes, which does do not affect the internally stored nonce.
To simplify system testing, prior to config locking the random number generator always returns the following value:
where ff is the first byte read from the device and the first byte into the SHA message.
To prevent replay attacks on encrypted data that is passed to or from the ATSHA204, the device requires that a new, internally
generated nonce be included as part of the encryption sequence used to protect the data being written or read. To implement
this requirement, the data protection key generated by GenDig and used by the Read or Write command must use the internal
random number generator during the creation of the Nonce.
Random numbers are generated from a combination of the output of a hardware random number generator and an internal
seed value, which is not externally accessible. The internal seed is stored in the EEPROM, and is normally updated once after
every power-up or sleep/wake cycle. After the update, this seed value is retained in registers within the device that are
invalidated if the devicez enters sleep mode or the power is removed.
Because there is an EEPROM endurance specification that limits the number of times the EEPROM seed can be updated, the
host system should manage power cycles to minimize the number of required updates. In certain circumstances, the system
may choose to suppress the EEPROM seed update using the mode parameter to the Nonce and Random commands.
4.
5.
•
•
•
•
•
ff ff 00 00 ff ff 00 00 …
Use that personalization key to write all the secret slots, ending with the final value of the personalization key slot
Lock the data zone
An Active Shield over the part
Internal Memory Encryption
Secure Test Modes
Glitch Protection
Voltage Tamper Detection
itself, using the following sequence repeated as necessary:
a.
b.
c.
Nonce command to generate a random nonce in TempKey
Gendig specifying the personalization key
Encrypted write to the target slot
Atmel ATSHA204 [DATASHEET]
8740D−CRYPTO−3/12
16
Related parts for ATSHA204
Image
Part Number
Description
Manufacturer
Datasheet
Request
R
Part Number:
Description:
Atmel CryptoMemory
Manufacturer:
ATMEL [ATMEL Corporation]
Datasheet:
Part Number:
Description:
Atmel CryptoMemory
Manufacturer:
ATMEL [ATMEL Corporation]
Datasheet:
Part Number:
Description:
Atmel CryptoMemory, 16Kbit
Manufacturer:
ATMEL [ATMEL Corporation]
Datasheet:
Part Number:
Description:
8-bit Atmel Microcontrollers
Manufacturer:
ATMEL [ATMEL Corporation]
Datasheet:
Part Number:
Description:
8-bit Atmel Microcontroller with 64K/128K/256K Bytes In-System Programmable Flash
Manufacturer:
ATMEL [ATMEL Corporation]
Datasheet:
Part Number:
Description:
8-bit Atmel Microcontroller with 16/32/64/128K Bytes In-System Programmable Flash
Manufacturer:
ATMEL [ATMEL Corporation]
Datasheet:
Part Number:
Description:
8-bit Atmel Microcontroller with 16/32/64K Bytes In-System Programmable Programmable
Manufacturer:
ATMEL [ATMEL Corporation]
Datasheet:
Part Number:
Description:
INTERVAL AND WIPE/WASH WIPER CONTROL IC WITH DELAY
Manufacturer:
ATMEL Corporation
Datasheet:
Part Number:
Description:
Low-Voltage Voice-Switched IC for Hands-Free Operation
Manufacturer:
ATMEL Corporation
Datasheet:
Part Number:
Description:
MONOLITHIC INTEGRATED FEATUREPHONE CIRCUIT
Manufacturer:
ATMEL Corporation
Datasheet:
Part Number:
Description:
AM-FM Receiver IC U4255BM-M
Manufacturer:
ATMEL Corporation
Datasheet:
Part Number:
Description:
Monolithic Integrated Feature Phone Circuit
Manufacturer:
ATMEL Corporation
Datasheet:
Part Number:
Description:
Multistandard Video-IF and Quasi Parallel Sound Processing
Manufacturer:
ATMEL Corporation
Datasheet: