Beruflich Dokumente
Kultur Dokumente
EMBEDDED
SECURITY
Product Guide
www.maximintegrated.com
Embedded Security Product Guide www.maximintegrated.com
Table of Contents
3 High-Performance TFT-Enabled Secure Microcontroller
4 Design-Ready PCI PTS 3.1 Terminal
5 Stand-Alone SoC Security for PIN Pad
6 Secure Authenticator Solutions for Counterfeit Protection
7 High-Security and Tamper-Protected Security Managers
2
www.maximintegrated.com Embedded Security Product Guide
Go Meshless
Secure SoC with On-the-Fly Memory Encryption
The DeepCover Secure Microcontroller (MAX32590 (JIBE)) is a secure, ARM9™-based, SoC µC with a 384MHz clock speed
and Ethernet interface communication to meet stringent financial terminal requirements. Our patented on-the-fly encryption
technology keeps your code safe without the hassle of expensive mesh. PCI PTS 3.1 certification is easy with an extensive board
support package and Linux® OS support, innovative security mechanisms, and high integration. Replace the traditional mono LCD
with a colorful TFT display to provide better visual effects for your designs.
Features
• Extensive security mechanisms (authenticated boot, secure NV SRAM with instant erase, OTP, AES/SHA engines, dynamic
sensor controller, temperature/voltage and frequency monitors, secure package)
• High system integration (Ethernet, TFT LCD, 384MHz CPU, USB host and device)
• Real-time external memory encryption and integrity
Benefits
• Reduced BOM with fewer external communication controllers; better user experience with color TFT display
• Provides best confidentiality while removing the need for an additional security cover; prevents code injection
• Simplifies security architecture and eases PCI certification
DMA DMA DMA DMA
UART
ENCRYPTION
SECURITY SDRAM
MONITORS MOBILE DDR
UART VOLTAGE,
FREQUENCY, AES NAND
TEMPERATURE, DES/3DES FLASH
I2C DIE SHIELD, RSA/DSA/ECDSA
EXTERNAL SENSORS AES-128
SECURE SHA-1/SHA-2
AND INTEGRITY
APB
3
Embedded Security Product Guide www.maximintegrated.com
POWER SUPPLY
JIBEPOS
MAX32590
73S8009R 78Q2123
SECURE 384MHz
SMART CARD INTERFACE IC 10/100 ETHERNET PHY
ARM9 MICROCONTROLLER
73S8009R MAX1931
SMART CARD INTERFACE IC USB SWITCH
MAXQ1741*
MAX3202E
SECURE MAGNETIC
32MB 64MB NAND USB ESD PROTECTION
CARD READER
LPDDR FLASH
MAX3202E
CONTACTLESS READER
USB ESD PROTECTION
4
www.maximintegrated.com Embedded Security Product Guide
JTAG
I-CACHE
MAXQ30 48KB
MMU
TIMERS/ AES
COUNTERS USER ENGINE
POWER
MANAGEMENT DES/3DES
USER ENGINE
INTERRUPT 4KB
CONTROLLER AES ENCRYPTABLE 2048-BIT MAA
8KB SRAM
NV SRAM (RSA, DSA, ECDSA)
256KB
WATCHDOG
FLASH
SHA-1, SHA-2
1.8V VOLTAGE UNIQUE
REGULATOR ID
CRC-16/32
EXTERNAL GENERATOR
ENVIRONMENTAL DYNAMIC
SECURE RTC TRNG
SENSORS SENSOR
CONTROLLER
MAXQ1852*
5
Embedded Security Product Guide www.maximintegrated.com
Host
Part Description Authentication Feature
Interface
DS2465 SHA-256 coprocessor with 1-Wire® Master I2 C Secure storage of system secret
DS28E15, DS28E22,
SHA-256 with 0.5Kb/2Kb/4Kb EEPROM 1-Wire Bidirectional challenge and response
DS28E25
DS28CN01 SHA-1 with 1Kb EEPROM I2C/SMBus Bidirectional challenge and response
DS28E01-100, DS28E02 SHA-1 with 1Kb EEPROM 1-Wire Bidirectional challenge and response
DS28E10 SHA-1 with 224b OTP EPROM 1-Wire Challenge and response
DS2460 SHA-1 coprocessor I2 C Secure storage of system secret
MAX66040, MAX66140 SHA-1 with 1Kb EEPROM RF Bidirectional challenge and response, ISO 14443B/15693
DS2431 1Kb EEPROM 1-Wire Customized 64-bit ROM, WP/OTP modes
DS2401, DS2411 64-bit ROM serial number 1-Wire Customized 64-bit ROM
DS28E15 DS28E25
• SHA-256 HW engine for MAC response to host challenges
• Highly secure storage of secrets
• NV user memory with multiple protection
• Bidirectional authentication protocol
6
www.maximintegrated.com Embedded Security Product Guide
Hardware AES Encryption with Anti-Tamper and Nonimprinting Memory Provides Industry's
Highest Level of Security
The DeepCover Security Manager (MAX36025) provides hardware encryption and the most advanced anti-tamper features
offered in the market. Encrypting/decrypting data in hardware using the MAX36025 provides the highest level of security, as
opposed to software encryption on a general-purpose microcontroller. The keys never leave the MAX36025 and are kept more
secure with the tamper-detection features.
General Features
• Dual AES processors
• Supports 128-, 192-, and 256-bit keys
ENCRYPTED RTC, RNG, TAMPER
• ECB, CTR, and CBC modes I2C TEMP SENSOR INPUTS No code
• Authentication via an encrypted I2C interface needed to
SRAM communicate
AUTH
• Bidirectional SPI ports GATEWAY TAMPER
CONTROLLER with MAX36025
• Use the same key to encrypt/decrypt data DETECTION AES engine after
CONTROLLER CPU authentication
• Support for independent encryption/ SUPERVISOR
decryption streams
SPI
INTERFACE ENCRYPTION
Security Features 1 AND 1KB SECURE
DATA ROUTING MEMORY
• 1KB nonimprinting memory for encryption
SPI
key storage INTERFACE AES ENGINE A No resident
Segmented memory to store two sets of
• 2 software
critical data development
SERIAL AES ENGINE B
FLASH
MAX36025 required
• Temperature, power, and oscillator tamper INTERFACE
monitors
• Digital and analog input tamper monitoring
7
Embedded Security Product Guide www.maximintegrated.com
Secure Microcontrollers
Internal Flash/ Battery
Speed Secure NV External
Part SRAM Memory USB† SPI ISO 7816 GPIO Leakage Package
and Core SRAM (KB) Memory
(KB) (µA)
Security Managers
AES
Temp Power External
Nonimprinting Encryption
Part Range Consumption Tamper I/O Authentication EV Kit Package
Memory (KB) ECB/CTR/
(°C) (typ) (µA) Monitors
CBC Modes
DS3600, -40 to 64B 3-wire/
5.7 4 — — 25-CSBGA
DS3605 +85 (DS3600) I2 C (DS3600)
DS3640, -40 to 4-wire/
6.5 1 4 — — 25-CSBGA
DS3641 +85 I2 C
DS3645 -55 to +95 12 4 8 I2 C — — 49-CSBGA
DS3650, -40 to
3.0, 1.5 128B 2 4-wire — — 16-CSBGA
MAX36051 +85 (MAX36051)
MAX36025 -55 to +95 9 1 8 SPI (2) Encrypted I2C 2 AES engines 81-CSBGA
DeepCover is a trademark and 1-Wire is a registered trademark of Maxim Integrated Products, Inc.
ARM9 and ARM926EJ-S are trademarks of ARM Limited.
EMV is a registered trademark of EMVCo LLC.
Linux is a registered trademark of Linus Torvalds.
MIPS32 is a registered trademark and 4KSd is a trademark of MIPS Technologies, Inc.