Offered as enabling end-to-end encryption, the DS28S60 DeepCover cryptographic coprocessor facilitates the implementation of full security for embedded, connected products. Its hardware-based security, says the company, provides layers of advanced physical security, cryptographic algorithms, secure boot, encryption, secure key storage, and digital signature generation and verification to fend off malicious attacks against IoT designs such as smart medical devices and industrial IoT applications.
The DS28S60 features the following:
- A high-speed 20-MHz SPI interface for fast throughput of security operations.
- A fixed-function ECC/SHA-256/AES cryptographic toolbox.
- ChipDNA PUF technology.
- A simple way to implement end-to-end encryption via its built-in key exchange capability, in which the part uses an asymmetric key algorithm to exchange a symmetric key. The symmetric key can then be used to encrypt/decrypt data between two IoT nodes or a sensor node and the cloud.
The device is offered as addressing the following key design challenges for securing IoT designs:
- Safety and reliability: Counterfeit components are blocked from operating in the system.
- Secure storage: ChipDNA PUF technology is used to encrypt keys, secrets, and all device-stored data.
- Secure boot: Its SHA-256 and ECDSA crypto toolbox features support secure boot of a host processor.
- Endpoint security: The device addresses concerns over secure communication and authenticity of end points.
- Feature control: Securely enable and disable various factory-based options.
An evaluation kit - the DS28S60EVKIT - is available for assessment of the cryptographic coprocessor.