Evaluation Hardware $26.20
1 View All
Designed, Built, Tested
Board pictured here has been fully assembled and tested.

Overview

Design Resources

Design & Integration File

  • Schematic
  • PCB Layout
  • PCB Gerber files
  • BOM
Download Design Files 736.88 K

Evaluation Hardware

Part Numbers with "Z" indicate RoHS Compliance. Boards checked are needed to evaluate this circuit.

  • MAXREFDES43# ($26.20) Secure Authentication Design with I2C SHA-256
Check Inventory & Purchase

Description

The MAXREFDES43# is an I2C-based authentication reference design, built to authenticate peripherals to Xilinx® FPGAs. Using the provided example code, the FPGA executes a challenge-response sequence with the DS28C22 to ensure the authenticity of a module, peripheral, or subsystem. The DS28C22 communicates on an I2C bus, providing a standard communication interface. The MAXREFDES43# is equipped with a Pmod connector for immediate testing using an Avnet ZedBoard. The simplicity of this design enables rapid adoption into any peripheral requiring security.

Refer to the Details section for more information. Design files including schematic, PCB files, and bill of materials (BOM) can be downloaded from the Design Resources section. Firmware is available upon request, following the execution of a nondisclosure agreement.

Features & Benefits

  • SHA-256 authentication
  • I2C interface
  • Example source code
  • Pmod-compatible form factor

Competitive Advantages

  • Crypto-strong authentication
  • Fast performance with hardware acceleration
  • Parts Used

    Details Section

    The proliferation of Internet-connected or Internet of Things (IoT) devices manifests itself in multiple applications including industrial, medical, and energy solutions. This increased connectedness requires enhanced security to protect IP, enable system features using software, and prevent counterfeiting. The MAXREFDES43# subsystem reference design uses the DS28C22 to immediately implement SHA-256 authentication on Xilinx FPGAs over an I2C serial bus. The MAXREFDES43# differs from the MAXREFDES34#, which uses the DS28E15 to communicate over the single-contact 1-Wire® bus. The reference code defines a SHA-256 processor on the host FPGA.

    Figure 1. The MAXREFDES43# subsystem design block diagram with development platform.

    Figure 1. The MAXREFDES43# subsystem design block diagram with development platform.

    The MAXREFDES43# interfaces with FPGA development boards using a 6-pin Pmod connector as illustrated. The MAXREFDES43# is configured with jumpers, J3 and J4, to allow for configuration with the ZedBoard and with alternate configurations. Both configurations are shown below. To interface with the ZedBoard, place jumpers between pins 2 and 3 of both J3 and J4. When plugging the MAXREFDES43# into a host board, make sure to correctly align the pins with the host Pmod connector, as shown in Figure 2 and Figure 3.

    Figure 2. Pmod connector.

    Figure 2. Pmod connector.

    Figure 3. The MAXREFDES43# subsystem design correctly inserted into the ZedBoard development platform. Note that the MAXREFDES43# board is plugged into the top row of the Pmod connector on the ZedBoard.

    Figure 3. The MAXREFDES43# subsystem design correctly inserted into the ZedBoard development platform. Note that the MAXREFDES43# board is plugged into the top row of the Pmod connector on the ZedBoard.


    Table 1 shows the supported platforms and ports.

    Table 1. Supported Platforms and Ports
    Supported Platforms Ports
    ZedBoard platform (Zynq®-7020) JA1

    For symmetric authentication schemes like SHA-256, protection of both the secure authenticator secret key, along with the FPGA secret key, are important. Symmetric authentication implementations with poor FPGA secret key security can be risky. To this end, the DS28C22 uses DeepCover® techniques to protect against invasive and noninvasive attacks on its secret key; the reference design spells out various techniques to protect the FPGA secret key.

    Additional detail on secret key protection techniques may be found in application note 5803, "Safeguard Your FPGA System with a Secure Authenticator."

    The MAXREFDES43# firmware design supports the ZedBoard kit and targets an ARM® Cortex®-A9 processor placed inside a Xilinx Zynq system-on-chip (SoC).

    The firmware allows for immediate interfacing to the hardware. The firmware is written in C, developed using the Xilinx SDK tool, based on the Eclipse open source standard.

    The firmware program sequence is used to compute and lock the secret (CLS), write page data to the DS28C22, and authenticate the DS28C22. The complete source code speeds customer development. Code documentation resides in the corresponding firmware platform files.

    Required equipment:

    • Windows® PC with two USB ports
    • MAXREFDES43# board
    • MAXREFDES43# supported platform (i.e., the ZedBoard kit)

    Download, read, and carefully follow each step in the appropriate MAXREFDES43# Quick Start Guide.


    ARM is a registered trademark and registered service mark of ARM Limited.
    Cortex is a registered trademark of ARM Limited.
    DeepCover is a registered trademark of Maxim Integrated Products, Inc.
    Eclipse is a trademark of Eclipse Foundation, Inc.
    HyperTerminal is a registered trademark of Hilgraeve, Incorporated.
    ISE is a registered trademark of Xilinx, Inc.
    Pmod is a trademark of Digilent Inc.
    Windows is a registered trademark and registered service mark of Microsoft Corporation.
    Windows XP is a registered trademark and registered service mark of Microsoft Corporation.
    Xilinx is a registered trademark and registered service mark of Xilinx, Inc.
    Zedboard is a trademark of ZedBoard.org.
    Zynq is a registered trademark of Xilinx, Inc.

    Support & Training

    Search our knowledge base for answers to your technical questions. Our dedicated team of Applications Engineers are also available to answer your technical questions.