MAX36025
DeepCover Security Manager for Tamper-Reactive Cryptographic-Node Control with AES Encryption
Advanced Physical Security and Hardware Encryption Provide Highest Level of Security and Encryption Key Protection
Part Details
- Cryptographic
- Triple Mode Encryption: AES-ECB, AES-CTR, AES-CBC
- Dual Encryption Cores to Allow Dual Key Cipher Translation and Routing
- On-Chip Secure Key Storage
- Pipelined Dual Asynchronous Bidirectional SPI Data Ports
- Storage
- 1K x 8 On-Chip Nonimprinting Memory with High-Speed Tamper-Reactive Erase
- External Serial Flash Interface
- Tamper-Reactive NV SRAM Controller
- Authentication
- On-Chip Pseudorandom Number Generator with Internal Seed
- I²C Control Interface Requires Authentication Through AES Encryption
- Tamper Detection and Response
- On-Chip Programmable Temperature Sensing with Proprietary Rate-of-Change (ROC) Detector
- Two General-Purpose Tamper-Detect Logic Inputs
- Four Uncommitted Tamper-Detect Comparator Inputs
- Four Window Comparators with On-Chip Reference Voltage
- Latching and Timestamping of Tamper Events
- Crystal Oscillator Tamper Monitoring
- Differential Power Analysis and TEMPEST Countermeasures
- On-Chip Spread-Spectrum Clock Source for the AES Cores and the External Memory Interface
- Power Controller Ensures Constant Current During Cryptographic Operations
Two SPI interfaces and one generic Serial Flash interface are provided for secure, flexible communication to external system nodes. The MAX36025 can be programmed to route any of these interface inputs through one, both, or neither of the dual AES engines, and also to any of these interface outputs.
Device programming and configuration are performed through an I²C-compatible interface. The I²C interface can be secured using an integrated authentication protocol for an additional layer of security regarding validation of ancillary system elements as well as FoF (friend or foe) decisions. Additionally, the MAX36025 can encrypt I²C communications using a configurable AES key.
The MAX36025 includes on-chip nonimprinting memory that incorporates a high-speed, direct-wired clearing function. The memory is constantly complemented in the background to prevent memory imprinting of data. The MAX36025 architecture allows the user to clear selective banks of the memory based upon specified tamper events. In the event of a qualified tamper, the desired bank(s) of memory are rapidly cleared and a negative bias can be applied to erase external memory.
The MAX36025 includes a seconds counter, watchdog timer, CPU supervisor, nonvolatile (NV) SRAM controller, and on-chip temperature sensor. In the event of a primary power failure, an external battery source is automatically switched in to keep the memory, time, and tamper-detection circuitry active. The MAX36025 provides low-leakage, tamper-detection inputs for interfacing to external sensors, interlocks, and antitamper meshes. The MAX36025 also invokes a tamper event on absolute temperature, if the temperature exceeds programmed limits, or if the crystal oscillator frequency falls outside of a specified window. The tamper event is latched and time-stamped for fault recovery purposes.
The hardwired AES engine implementation and extensive suite of tamper detection and response mechanisms make the MAX36025 well suited across a wide range of applications where consistent security policies must be maintained.
Applications
- Access-Control Security Systems
- ATMs
- Casino Gaming Systems
- Cryptographic Processors
- E-Commerce Servers
- Network Routers and Switches
- Network Storage Servers
- PIN Pads
- Point-of-Sale Terminals
- Secure Communications
- Set-Top Boxes
- Smart Card Readers
- Software-Defined Radios
Documentation
Data Sheet 1
Reliability Data 1
Design Note 3
Technical Articles 1
Request an NDA
Complete documentation is available upon completion of a Non-Disclosure Agreement (NDA).
Request an NDAThis is the most up-to-date revision of the Data Sheet.
Hardware Ecosystem
| Parts | Product Life Cycle | Description |
|---|---|---|
| Security Managers 5 | ||
| DS3640 | PRODUCTION | DeepCover Security Manager with I²C Interface and 1KB Nonimprinting Battery-Backed Encryption Key SRAM |
| DS3641 | PRODUCTION | DeepCover Security Manager with SPI-Compatible Interface and 1KB Nonimprinting Key Memory |
| DS3644 | PRODUCTION | DeepCover Security Manager with 1KB Secure Memory and Programmable Tamper Hierarchy |
| DS3645 | PRODUCTION | 4KB Secure Memory with Tamper Protection for Network Server Applications |
| DS3660 | PRODUCTION | DeepCover Security Manager for Low-Voltage Operation with 1KB Secure Memory and Programmable Tamper Hierarchy |
Latest Discussions
No discussions on max36025 yet. Have something to say?
Start a Discussion on EngineerZone®