Hi, in our design we would like to replace a smartcard by a kind of security chip or security module. The chip has to provide: - unique ID / serial number - secure key management The idea is to store data on the device in a way that they cannot be read (hence encryption) or copied to a similar device (hence unique ID) without the particular security chip being involved. The actual data are some kB only, so if there is internal persistent memory on the security chip it cold be utilized, but it is not a requirement. External flash memory or EEPROM is sufficient. The memory does not need to be controlled by the security chip, since on the device there is a powerful microcontroller that can control the chip and the memory as well. So far I did not find any useful information what chip could be used for this. Any ideas or hints? TIA, Matthias
Security chip for replacing smartcard?
Started by ●July 26, 2006
Reply by ●July 26, 20062006-07-26
Matthias wrote:> Hi, > > in our design we would like to replace a smartcard by a kind of > security chip or security module. The chip has to provide: > > - unique ID / serial number > - secure key management > > The idea is to store data on the device in a way that they cannot be > read (hence encryption) or copied to a similar device (hence unique ID) > without the particular security chip being involved. > The actual data are some kB only, so if there is internal persistent > memory on the security chip it cold be utilized, but it is not a > requirement. External flash memory or EEPROM is sufficient. The memory > does not need to be controlled by the security chip, since on the > device there is a powerful microcontroller that can control the chip > and the memory as well. >A secured micro can easily satisfy your requirements.> So far I did not find any useful information what chip could be used > for this.The best security is not to publize the implementations; therefore, you will find very little information on the best.> > Any ideas or hints? > > TIA, > Matthias
Reply by ●July 26, 20062006-07-26
linnix wrote:> > in our design we would like to replace a smartcard by a kind of > > security chip or security module. The chip has to provide:[...]> A secured micro can easily satisfy your requirements.Could you please give a concrete example (model or vendor)?> > So far I did not find any useful information what chip could be used > > for this. > > The best security is not to publize the implementations; therefore, you > will find very little information on the best.Security by obscurity? I do not think so... Anyway, I am not primarily interested in internal implementation details, since I do not want to develop such chip myself. I am rather looking for a chip that can satisfy our needs and that can be bought in numbers at reasonable prices. Maybe there is a "smarcard chip" that does not have a physical smart card to be plugged in, but instead contains the logic and functionality of a smartcard internally. Do you know something like this? Thanks, Matthias
Reply by ●July 26, 20062006-07-26
> > Hi, > > in our design we would like to replace a smartcard by a kind of > security chip or security module. The chip has to provide: > > - unique ID / serial number > - secure key management > > The idea is to store data on the device in a way that they cannot be > read (hence encryption) or copied to a similar device (hence unique ID) > without the particular security chip being involved. > The actual data are some kB only, so if there is internal persistent > memory on the security chip it cold be utilized, but it is not a > requirement. External flash memory or EEPROM is sufficient. The memory > does not need to be controlled by the security chip, since on the > device there is a powerful microcontroller that can control the chip > and the memory as well. > > So far I did not find any useful information what chip could be used > for this. > > Any ideas or hints? > > TIA, > MatthiasWould an iButton be any use? http://www.maxim-ic.com/products/ibutton/products/ibuttons.cfm#secure Regards, Richard. http://www.FreeRTOS.org for Cortex-M3, ARM7, ARM9, HCS12, H8S, MSP430 Microblaze, Coldfire, AVR, x86, 8051 & PIC18 * * * *
Reply by ●July 26, 20062006-07-26
FreeRTOS.org wrote:> > > > Hi, > > > > in our design we would like to replace a smartcard by a kind of > > security chip or security module. The chip has to provide: > > > > - unique ID / serial number > > - secure key management > > > > The idea is to store data on the device in a way that they cannot be > > read (hence encryption) or copied to a similar device (hence unique ID) > > without the particular security chip being involved. > > The actual data are some kB only, so if there is internal persistent > > memory on the security chip it cold be utilized, but it is not a > > requirement. External flash memory or EEPROM is sufficient. The memory > > does not need to be controlled by the security chip, since on the > > device there is a powerful microcontroller that can control the chip > > and the memory as well. > > > > So far I did not find any useful information what chip could be used > > for this. > > > > Any ideas or hints? > > > > TIA, > > Matthias > > > Would an iButton be any use? > http://www.maxim-ic.com/products/ibutton/products/ibuttons.cfm#secure > > Regards, > Richard. > > http://www.FreeRTOS.org > for Cortex-M3, ARM7, ARM9, HCS12, H8S, MSP430 > Microblaze, Coldfire, AVR, x86, 8051 & PIC18 * * * *Maxim makes a wide ranging line of the type of products you appear to want. The only issue I have with Maxim is - it's Maxim. They still kill me on lead times and delivery. Cheers PeteS
Reply by ●July 26, 20062006-07-26
linnix wrote:> A secured micro can easily satisfy your requirements.A SECURE micro is not the same thing as a SECURED micro. Unless the part is specifically designed for secure storage, you can't say it's going to satisfy requirements.> The best security is not to publize the implementations; therefore, you > will find very little information on the best.The best security is one where complete publication of implementation details took place some time ago, and nobody has detected significant security holes.
Reply by ●July 27, 20062006-07-27
PeteS wrote:> FreeRTOS.org wrote: > > > in our design we would like to replace a smartcard by a kind of > > > security chip or security module. The chip has to provide:[...]> > > > Would an iButton be any use? > > http://www.maxim-ic.com/products/ibutton/products/ibuttons.cfm#secure[...]> > Maxim makes a wide ranging line of the type of products you appear to > want.Thanks, that was a good pointer. The iButtons seem to be very close to our requirements, but unfortunately they have a case that does not allow soldering them on the PCB. One could consider a kind of socket, but I do not think that is the way we will choose. The other secure micros (DS5250 etc) would be fine if they had a fixed unique ID. So the search continues... Thanks, Matthias
Reply by ●July 27, 20062006-07-27
> >PeteS wrote: > >> FreeRTOS.org wrote: >> > > in our design we would like to replace a smartcard by a kind of >> > > security chip or security module. The chip has to provide: >[...] >> > >> > Would an iButton be any use? >> >http://www.maxim-ic.com/products/ibutton/products/ibuttons.cfm#secure>[...] >> >> Maxim makes a wide ranging line of the type of products you appear to >> want. > >Thanks, that was a good pointer. > >The iButtons seem to be very close to our requirements, but >unfortunately they have a case that does not allow soldering them on >the PCB. One could consider a kind of socket, but I do not think that >is the way we will choose. > >The other secure micros (DS5250 etc) would be fine if they had a fixed >unique ID. > >So the search continues... > >Thanks, >Matthias > >Infineoh have chips exactly like you want: Trrusted Platform Module http://www.infineon.com/cgi-bin/ifx/portal/ep/channelView.do?channelId=-84648&channelPage=%2Fep%2Fchannel%2FproductOverview.jsp&pageTypeId=17099 Atmel have the same type of devices. regards bis
Reply by ●July 27, 20062006-07-27
> The iButtons seem to be very close to our requirements, but > unfortunately they have a case that does not allow soldering them on > the PCB. One could consider a kind of socket, but I do not think that > is the way we will choose.There are sockets available: http://www.maxim-ic.com/products/ibutton/products/mounts.cfm but as you say you cannot solder them directly. Regards, Richard. http://www.FreeRTOS.org for Cortex-M3, ARM7, ARM9, HCS12, H8S, MSP430 Microblaze, Coldfire, AVR, x86, 8051 & PIC18 * * * *
Reply by ●July 27, 20062006-07-27
On 26 Jul 2006 23:56:35 -0700, "Matthias" <news@ingbh.de> wrote:>> > Would an iButton be any use? >> > http://www.maxim-ic.com/products/ibutton/products/ibuttons.cfm#secure >[...] >> >> Maxim makes a wide ranging line of the type of products you appear to >> want. > >Thanks, that was a good pointer. > >The iButtons seem to be very close to our requirements, but >unfortunately they have a case that does not allow soldering them on >the PCB. One could consider a kind of socket, but I do not think that >is the way we will choose.All iButtons are also available as chips. Look at: DS28E01-100 http://www.maxim-ic.com/quick_view2.cfm/qv_pk/4766 DS2432 http://www.maxim-ic.com/quick_view2.cfm/qv_pk/2914 Mit freundlichen Gr��en Frank-Christian Kr�gel