Application Note. Atmel ATSHA204 Authentication Modes. Prerequisites. Overview. Introduction



Similar documents
Application Note. Atmel CryptoAuthentication Product Uses. Atmel ATSHA204. Abstract. Overview

APPLICATION NOTE. Secure Personalization with Transport Key Authentication. ATSHA204A, ATECC108A, and ATECC508A. Introduction.

How To Use An Atmel Atmel Avr32848 Demo For Android (32Bit) With A Microcontroller (32B) And An Android Accessory (32D) On A Microcontroller (32Gb) On An Android Phone Or

APPLICATION NOTE. Atmel AT04389: Connecting SAMD20E to the AT86RF233 Transceiver. Atmel SAMD20. Description. Features

Atmel AVR4921: ASF - USB Device Stack Differences between ASF V1 and V2. 8-bit Atmel Microcontrollers. Application Note. Features.

APPLICATION NOTE. Atmel AVR134: Real Time Clock (RTC) Using the Asynchronous Timer. Atmel AVR 8-bit Microcontroller. Introduction.

APPLICATION NOTE. Atmel LF-RFID Kits Overview. Atmel LF-RFID Kit. LF-RFID Kit Introduction

How To Design An Ism Band Antenna For 915Mhz/2.4Ghz Ism Bands On A Pbbb (Bcm) Board

APPLICATION NOTE. Authentication Counting. Atmel CryptoAuthentication. Features. Introduction

Atmel AVR4903: ASF - USB Device HID Mouse Application. Atmel Microcontrollers. Application Note. Features. 1 Introduction

APPLICATION NOTE. Atmel AT02985: User s Guide for USB-CAN Demo on SAM4E-EK. Atmel AVR 32-bit Microcontroller. Features. Description.

32-bit AVR UC3 Microcontrollers. 32-bit AtmelAVR Application Note. AVR32769: How to Compile the standalone AVR32 Software Framework in AVR32 Studio V2

Atmel AVR4920: ASF - USB Device Stack - Compliance and Performance Figures. Atmel Microcontrollers. Application Note. Features.

APPLICATION NOTE Atmel AT02509: In House Unit with Bluetooth Low Energy Module Hardware User Guide 8-bit Atmel Microcontroller Features Description

AVR1922: Xplain Board Controller Firmware. 8-bit Microcontrollers. Application Note. Features. 1 Introduction

AT91SAM ARM-based Flash MCU. Application Note

AVR32138: How to optimize the ADC usage on AT32UC3A0/1, AT32UC3A3 and AT32UC3B0/1 series. 32-bit Microcontrollers. Application Note.

APPLICATION NOTE. Atmel AVR443: Sensor-based Control of Three Phase Brushless DC Motor. Atmel AVR 8-bit Microcontrollers. Features.

AVR115: Data Logging with Atmel File System on ATmega32U4. Microcontrollers. Application Note. 1 Introduction. Atmel

Introducing a platform to facilitate reliable and highly productive embedded developments

Software Prerequisites Linux Ubuntu LTS. Estimated completion time: 15min. The goal of this hands-on is to:

APPLICATION NOTE. Atmel AT01095: Joystick Game Controller Reference Design. 8-/16-bit Atmel Microcontrollers. Features.

Using CryptoMemory in Full I 2 C Compliant Mode. Using CryptoMemory in Full I 2 C Compliant Mode AT88SC0104CA AT88SC0204CA AT88SC0404CA AT88SC0808CA

AVR32701: AVR32AP7 USB Performance. 32-bit Microcontrollers. Application Note. Features. 1 Introduction

AVR287: USB Host HID and Mass Storage Demonstration. 8-bit Microcontrollers. Application Note. Features. 1 Introduction

APPLICATION NOTE. Atmel AVR600: STK600 Expansion, Routing and Socket Boards. Atmel Microcontrollers. Introduction

Application Note. 1. Introduction. 2. Associated Documentation. 3. Gigabit Ethernet Implementation on SAMA5D3 Series. AT91SAM ARM-based Embedded MPU

8-bit. Application Note. Microcontrollers. AVR282: USB Firmware Upgrade for AT90USB

AT88CK490 Evaluation Kit

AVR1510: Xplain training - XMEGA USART. 8-bit Microcontrollers. Application Note. Prerequisites. 1 Introduction

AVR1900: Getting started with ATxmega128A1 on STK bit Microcontrollers. Application Note. 1 Introduction

AVR1318: Using the XMEGA built-in AES accelerator. 8-bit Microcontrollers. Application Note. Features. 1 Introduction

Application Note. 8-bit Microcontrollers. AVR270: USB Mouse Demonstration

Atmel AVR1017: XMEGA - USB Hardware Design Recommendations. 8-bit Atmel Microcontrollers. Application Note. Features.

Atmel AT32UC3A3256 microcontroller 64MBit SDRAM Analog input (to ADC) Temperature sensor RC filter

8051 Flash Microcontroller. Application Note. A Digital Thermometer Using the Atmel AT89LP2052 Microcontroller

CryptoAuth Xplained Pro

APPLICATION NOTE. AT16268: JD Smart Cloud Based Smart Plug Getting. Started Guide ATSAMW25. Introduction. Features

AVR1309: Using the XMEGA SPI. 8-bit Microcontrollers. Application Note. Features. 1 Introduction SCK MOSI MISO SS

AVR2006: Design and characterization of the Radio Controller Board's 2.4GHz PCB Antenna. Application Note. Features.

More Secure, Less Costly IoT Edge Node Security Provisioning

AVR32788: AVR 32 How to use the SSC in I2S mode. 32-bit Microcontrollers. Application Note. Features. 1 Introduction

AVR125: ADC of tinyavr in Single Ended Mode. 8-bit Microcontrollers. Application Note. Features. 1 Introduction

APPLICATION NOTE. Atmel AT01180: Barcode and QR code scanner User Guide. Atmel 32-bit Microcontroller. Features. Introduction

Atmel AVR4027: Tips and Tricks to Optimize Your C Code for 8-bit AVR Microcontrollers. 8-bit Atmel Microcontrollers. Application Note.

AVR317: Using the Master SPI Mode of the USART module. 8-bit Microcontrollers. Application Note. Features. Introduction

APPLICATION NOTE. Atmel AVR2033: SAM-ICE Adapter Hardware User Manual. 8-bit Atmel Microcontrollers. Features. Introduction

USER GUIDE. ZigBit USB Stick User Guide. Introduction

AVR305: Half Duplex Compact Software UART. 8-bit Microcontrollers. Application Note. Features. 1 Introduction

AVR1600: Using the XMEGA Quadrature Decoder. 8-bit Microcontrollers. Application Note. Features. 1 Introduction. Sensors

USER GUIDE EDBG. Description

AVR1321: Using the Atmel AVR XMEGA 32-bit Real Time Counter and Battery Backup System. 8-bit Microcontrollers. Application Note.

AVR033: Getting Started with the CodeVisionAVR C Compiler. 8-bit Microcontrollers. Application Note. Features. 1 Introduction

AVR319: Using the USI module for SPI communication. 8-bit Microcontrollers. Application Note. Features. Introduction

8-bit Atmel Microcontrollers. Application Note. Atmel AVR211: Wafer Level Chip Scale Packages

General Porting Considerations. Memory EEPROM XRAM

AVR353: Voltage Reference Calibration and Voltage ADC Usage. 8-bit Microcontrollers. Application Note. Features. 1 Introduction

APPLICATION NOTE. AT07175: SAM-BA Bootloader for SAM D21. Atmel SAM D21. Introduction. Features

APPLICATION NOTE. AT03155: Real-Time-Clock Calibration and Compensation. SAM3 / SAM4 Series. Scope

Atmel AVR ATxmega384C3 microcontroller OLED display with pixels resolution Analog sensors. Ambient light sensor Temperature sensor

Dell One Identity Cloud Access Manager How to Configure vworkspace Integration

SMARTCARD XPRO. Preface. SMART ARM-based Microcontrollers USER GUIDE

AVR151: Setup and Use of the SPI. Introduction. Features. Atmel AVR 8-bit Microcontroller APPLICATION NOTE

Quest vworkspace Virtual Desktop Extensions for Linux

Application Note. 8-bit Microcontrollers. AVR272: USB CDC Demonstration UART to USB Bridge

formerly Help Desk Authority Quest Free Network Tools User Manual

ChangeAuditor 6.0 For Windows File Servers. Event Reference Guide

APPLICATION NOTE. Atmel AT02845: Coexistence between ZigBee and Other 2.4GHz Products. Atmel MCU Wireless. Description. Features

Dell One Identity Cloud Access Manager How To Deploy Cloud Access Manager in a Virtual Private Cloud

Company Profile Osaki, Shinagawa-ku, Tokyo, Japan Tel

1Mb (64K x 16) One-time Programmable Read-only Memory

Introduction to Version Control in

Application Note. 8-bit Microcontrollers. AVR293: USB Composite Device

Designing Feature-Rich User Interfaces for Home and Industrial Controllers

Crypto- Authentication. High Level Security Models Application Note. Description 1. SHA-256

3-output Laser Driver for HD-DVD/ Blu-ray/DVD/ CD-ROM ATR0885. Preliminary. Summary. Features. Applications. 1. Description

Dell Spotlight on Active Directory Server Health Wizard Configuration Guide

AVR1301: Using the XMEGA DAC. 8-bit Microcontrollers. Application Note. Features. 1 Introduction

Practical PCB design techniques for wireless ICs Controlled impedance layout 100Ω balanced transmission lines

Dell InTrust Preparing for Auditing Cisco PIX Firewall

Dell Statistica. Statistica Document Management System (SDMS) Requirements

ChangeAuditor 5.6. For Windows File Servers Event Reference Guide

APPLICATION NOTE. Atmel AVR911: AVR Open Source Programmer. 8-bit Atmel Microcontrollers. Features. Introduction

Spotlight Management Pack for SCOM

New Features and Enhancements

Two mechanical buttons Two user LEDs Four expansion headers. Board controller with USB interface. One power LED and one status LED

AVR030: Getting Started with IAR Embedded Workbench for Atmel AVR. 8-bit Microcontrollers. Application Note. Features.

Application Note. C51 Bootloaders. C51 General Information about Bootloader and In System Programming. Overview. Abreviations

Capacitive Touch Technology Opens the Door to a New Generation of Automotive User Interfaces

AT11805: Capacitive Touch Long Slider Design with PTC. Introduction. Features. Touch Solutions APPLICATION NOTE

AVR106: C Functions for Reading and Writing to Flash Memory. Introduction. Features. AVR 8-bit Microcontrollers APPLICATION NOTE

APPLICATION NOTE. AT12405: Low Power Sensor Design with PTC. Atmel MCU Integrated Touch. Introduction

Atmel AVR4905: ASF - USB Device HID Generic. 8-/32-bit Atmel Microcontrollers. Application Note. Features. 1 Introduction

AT91 ARM Thumb Microcontrollers. AT91SAM CAN Bootloader. AT91SAM CAN Bootloader User Notes. 1. Description. 2. Key Features

Proximity Design Guide. Proximity Design Guide. Application Note QTAN Introduction

Dell One Identity Cloud Access Manager How to Configure for SSO to SAP NetWeaver using SAML 2.0

Dell Migration Manager for Enterprise Social What Can and Cannot Be Migrated

AVR2004: LC-Balun for AT86RF230. Application Note. Features. 1 Introduction

Object Level Authentication

Atmel AVR4950: ASF - USB Host Stack. 8-bit Atmel Microcontrollers. Application Note. Features. 1 Introduction

Transcription:

Application Note Atmel Authentication Modes Prerequisites Hardware Atmel AT88CK454BLACK Evaluation Board Atmel AT88CK109STK8 Kit Software Atmel Crypto Evaluation Studio (ACES) Overview Understand which customers the Atmel device benefits. Understand which use cases the device is useful in. Develop an in depth understanding of the device. Introduction This document describes the general application of the device. Since a minimal amount of system changes are required, the device is beneficial in securing product accessories. The four basic types of accessory authentication are described more in detail in this document which are: Fixed Challenge Authentication Unique Challenge Authentication Random Challenge Authentication Diversified Key Authentication

1. Authentication Types 1.1 Fixed Challenge Authentication The Fixed Challenge Authentication is an easy way to add security to a product without the added expense of added hardware to the host, interactive testing, or extensive software development. Same question on each request. What's the answer to the question? The answer is... Same answer to each question. With the Fixed Challenge Authentication only, the client requires an device programmed with secrets. The host is able to use any number of precalculated challenge/response pairs to validate that the client includes a valid. Utilizing an device in the client enables the Atmel CryptoAuthentication to be off loaded to a secure device with no firmware requirements on the client. The Fixed Challenge allows for the addition of the first level of hardware authentication with a minimal amount of change to the host firmware changes. Send command to client. MAC (SlotID, Fixed Challenge) 2

1.2 Random Challenge Authentication The Random Challenge Authentication improves on the Fixed Challenge by adding a changing challenge to each request. This feature enables the system to defend against replay style attacks. New question on each request. What's the answer to the question x? The answer is y... Different answer for each question. By adding an device to the host, the system is able to generate a challenge for the client on the fly. This allows a unique challenge to be sent for every validation request. In addition, by generating the challenge internally with the host s device, the response is unknown to the system allowing the use of an unsecure processor without the threat that an attacker will be able to learn the system secrets. This dramatically limits the ability of an unauthorized device from producing the correct response. Generate Random Number. Send command to client. MAC (SlotID, Random Challenge) 3

1.3 Unique Challenge Authentication The Unique Challenge Authentication improves on the Fixed Challenge by adding a unique challenge to each request. This authentication feature enables the system to defend against replay style attacks. New question on each request. What's the answer to the question x + time? The answer is y. Different answer for each question. By adding an device to the host, the system is able to generate a challenge for the client on the fly. This allows a unique challenge to be sent for every validation request. In addition, by generating the challenge internally with the host s device the response is unknown to the system allowing the use of an unsecure processor without the threat that an attacker will be able to learn the system secrets. This severally limits the ability of an unauthorized device from producing the correct response. Generate random number. Send command to client. MAC (SlotID, Unique Challenge) 4

1.4 Diversified Key Authentication The Diversified Key Authentication enables the host to identify the specific accessory that is trying to authenticate with it. This enable the use of access lists (black lists) by the system. Figure 1-1. Diversified Fixed Who are you? I am... Same question for you only on each request. What's the answer to the question. The answer is Same answer for me to each question. Figure 1-2. Diversified Fixed Read serial number from client. Read (Config, Block 0) Serial Number GenDig (SlotID, S/N) Send command to client. MAC (SlotID, Fixed Challenge) 5

Figure 1-3. Diversified Random Who are you? I am... New question for you only on each request. What's the answer to the question x? The answer is y. Different answer for me to each question. Figure 1-4. Diversified Random Read serial number from client. Read (Config, Block 0) Serial Number GenDig (SlotID, S/N) Send command to client. MAC (SlotID, Random Challenge) 6

2. Configuration Figure 2-1. Shared Key Configuration Load Key into SlotID Load Key into SlotID Figure 2-2. Diversified Key Configuration Load Master Key into SlotID Load Master Key into SlotID Read S/N Load S/N into TempKey DeriveKey (SlotID) with S/N The master key is loaded into the client slotid. The S/N of the client is loaded into the client TempKey. The DeriveKey is run on the client updating the key in slotid with a unique key based on the master key and the client S/N. 7

3. Examples 3.1 Fixed and Random Challenge Table 3-1. Fixed and Random Challenge Sends to SHA 29 03 27 08 00 00 00 00 00 00 00 00 00 00 00 00 CMD Count MAC Mode SlotID Challenge 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Challenge 00 00 00 00 00 00 00 BB 97 Challenge CRC Reads from SHA 28 23 CA 9F 60 7C B7 37 83 AE D7 93 BF 00 2A A4 Count 9A 1A 86 06 11 87 90 70 E3 25 24 E4 7E AD 40 11 2C A6 4F 19 CRC 8

3.2 Diversified Key The host will read the S/N from the client and then load that value into tempkey. This is done to allow the host to match the key stored in the client. Table 3-2. Diversified Key Sends Read to the 29 03 07 02 80 00 00 09 AD CMD Count Read Zone Address CRC Reads the from the 28 23 01 23 4B 88 80 01 02 00 8D 3F 57 7E EE 00 Count S/N[0:3] RevNum S\N[4:8] Res 00 FF C9 00 00 00 00 00 00 00 00 00 00 00 00 00 Res TO OTP SM Slot0 Slot1 Slot2 Slot3 Slot4 00 00 16 39 Slot5 CRC Generates a Key that Matches the 29 03 0B 15 02 00 00 1C 00 00 00 CA 69 CMD Count Gen- Dig Mem- Zone SlotID Other Data CRC Reads Status 28 00 03 40 Status CRC 9

Sends MAC to the 29 03 27 08 00 00 00 00 00 00 00 00 00 00 00 00 CMD Count MAC Mode SlotID Challenge 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Challenge 00 00 00 00 00 00 00 BB 97 Challenge CRC Reads the from the 28 23 CA 9F 60 7C B7 37 83 AE D7 93 BF 00 2A A4 Count 9A 1A 86 06 11 87 90 70 E3 25 24 E4 7E AD 40 11 2C A6 4F 19 CRC 4. Revision History Doc. Rev. Date Comments 8834B 11/2012 Update title from Accessory Authentication to Authentication Modes. 8834A 10/2012 Initial document release. Function 10

Atmel Corporation 1600 Technology Drive San Jose, CA 95110 USA Tel: (+1) (408) 441-0311 Fax: (+1) (408) 487-2600 www.atmel.com Atmel Asia Limited Unit 01-5 & 16, 19F BEA Tower, Millennium City 5 418 Kwun Tong Roa Kwun Tong, Kowloon HONG KONG Tel: (+852) 2245-6100 Fax: (+852) 2722-1369 Atmel Munich GmbH Business Campus Parkring 4 D-85748 Garching b. Munich GERMANY Tel: (+49) 89-31970-0 Fax: (+49) 89-3194621 Atmel Japan G.K. 16F Shin-Osaki Kangyo Bldg 1-6-4 Osaki, Shinagawa-ku Tokyo 141-0032 JAPAN Tel: (+81) (3) 6417-0300 Fax: (+81) (3) 6417-0370 2012 Atmel Corporation. All rights reserved. / Rev.: Atmel 8834B CryptoAuth Authentication Modes_APPLICATION NOTE 11/2012 Atmel, Atmel logo and combinations thereof, Enabling Unlimited Possibilities, CryptoAuthentication, and others are registered trademarks or trademarks of Atmel Corporation or its subsidiaries. Other terms and product names may be trademarks of others. Disclaimer: The information in this document is provided in connection with Atmel products. No license, express or implied, by estoppel or otherwise, to any intellectual property right is granted by this document or in connection with the sale of Atmel products. EXCEPT AS SET FORTH IN THE ATMEL TERMS AND CONDITIONS OF SALES LOCATED ON THE ATMEL WEBSITE, ATMEL ASSUMES NO LIABILITY WHATSOEVER AND DISCLAIMS ANY EXPRESS, IMPLIED OR STATUTORY WARRANTY RELATING TO ITS PRODUCTS INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT. IN NO EVENT SHALL ATMEL BE LIABLE FOR ANY DIRECT, INDIRECT, CONSEQUENTIAL, PUNITIVE, SPECIAL OR INCIDENTAL DAMAGES (INCLUDING, WITHOUT LIMITATION, DAMAGES FOR LOSS AND PROFITS, BUSINESS INTERRUPTION, OR LOSS OF INFORMATION) ARISING OUT OF THE USE OR INABILITY TO USE THIS DOCUMENT, EVEN IF ATMEL HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. Atmel makes no representations or warranties with respect to the accuracy or completeness of the contents of this document and reserves the right to make changes to specifications and products descriptions at any time without notice. Atmel does not make any commitment to update the information contained herein. Unless specifically provided otherwise, Atmel products are not suitable for, and shall not be used in, automotive applications. Atmel products are not intended, authorized, or warranted for use as components in applications intended to support or sustain life.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information