ATAES132-SH-ER Atmel, ATAES132-SH-ER Datasheet - Page 107

ATAES132-SH-ER

Manufacturer Part Number

ATAES132-SH-ER

Description

EEPROM AES 32Kbit EE I2C

Manufacturer

Atmel

Datasheet

1.ATAES132-SH-EQ.pdf (166 pages)

Specifications of ATAES132-SH-ER

Rohs

yes

Maximum Clock Frequency

1 MHz

Operating Supply Voltage

6 V

Maximum Operating Temperature

- 40 C to + 85 C

Mounting Style

SMD/SMT

Package / Case

SOIC-8

Interface Type

I2C

Factory Pack Quantity

2300

Current page: 107 of 166
Download datasheet (2Mb)

I.4.

Data Encryption

The following example shows how the encrypted data and integrity MAC are calculated for a 128 bit data read from the device

with up to 14 bytes of authenticate-only data. This operation involves five passes through the AES crypto engine, all five using

the same key. If there are more than 14 bytes of authenticate-only data and/or more than 128 bits of data being read, then

one, two or three more passes through the AES crypto engine are required.

There are three passes through the AES crypto engine in CBC mode to create the cleartext MAC. The inputs to the crypto

engine for those blocks are labeled B0, B1 and B2, and the outputs are B’0, B’1 and B’2 respectively.

There are two passes through the AES crypto engine in CTR mode to create the key block that is used to encrypt the data and

the MAC. The inputs to the crypto engine for those blocks are labeled A0 and A1, and the outputs are A’0 and A’1

respectively. A’0 and A’1 are the blocks sent to the system as the output parameters of the EncRead and decrypt commands.

This sequence is also used for the Encrypt command, in addition to EncRead.

B0 is composed of the following 128 bits:

B1 is the XOR of B’0 with the following 128 bits:

B2 is the XOR of B’1 with the following 128 bits:

16 bytes cleartext data

B’2 is the cleartext MAC, which must be encrypted before being sent to the system

A0 is composed of the following 128 bits:

A’0 is XOR’d with the cleartext MAC and sent to the system

A1 is composed of the following 128 bits:

A’1 is XOR’d with the cleartext data and sent to the system

1 byte flag, fixed value of b0111 1001

12 byte nonce, as generated by the nonce command

1 byte MacCount, 1 for first MAC generation

2 byte length field – max 0x00 20 if 256 bits of encrypted data, min 0x00 01 for one byte

2 byte length field, size of authenticate-only data

14 byte data to be authenticated only

1 byte flag, fixed value of b0000 0001

12 byte nonce, as generated by the nonce command

1 byte MacCount, 1 for first MAC generation

2 byte counter field – always 0x00 00 for A0

1 byte flag, fixed value of b0000 0001

12 byte nonce, as generated by ATAES132 during nonce command

1 byte MacCount, 1 for first MAC generation

2 byte counter field – always 0x00 01 for A1

Atmel ATAES132 Preliminary Datasheet

8760A−CRYPTO−5/11

107

ATAES132-SH-ER Atmel, ATAES132-SH-ER Datasheet - Page 107

ATAES132-SH-ER

Specifications of ATAES132-SH-ER

Related parts for ATAES132-SH-ER