Datasheet
Table Of Contents
- Features
- Applications
- Pin Configuration and Pinouts
- Table of Contents
- 1. Introduction
- 2. Electrical Characteristics
- 3. Compatibility
- 4. Package Marking Information
- 5. Package Drawings
- 6. Revision History
- The Microchip Web Site
- Customer Change Notification Service
- Customer Support
- Product Identification System
- Microchip Devices Code Protection Feature
- Legal Notice
- Trademarks
- Quality Management System Certified by DNV
- Worldwide Sales and Service
1. Introduction
1.1 Applications
The ATECC608A is a member of the Microchip CryptoAuthentication
™
family of high-security
cryptographic devices which combine world-class hardware-based key storage with hardware
cryptographic accelerators to implement various authentication and encryption protocols.
The ATECC608A has a flexible command set that allows use in many applications, including the
following:
• Network/IoT Node Endpoint Security
Manage node identity authentication and session key creation & management. Supports the entire
ephemeral session key generation flow for multiple protocols including TLS 1.2 (and earlier) and
TLS 1.3
• Secure Boot
Support the MCU host by validating code digests and optionally enabling communication keys on
success. Various configurations to offer enhanced performance are available.
• Small Message Encryption
Hardware AES engine to encrypt and/or decrypt small messages or data such as PII information.
Supports AES-ECB mode directly. Other modes can be implemented with the help of the host
microcontroller. Additional GFM calculation function to support AES-GCM.
• Key Generation for Software Download
Supports local protected key generation for downloaded images. Both broadcast of one image to
many systems, each with the same decryption key, or point-to-point download of unique images per
system are supported.
• Ecosystem control and Anti-Counterfeiting
Validates that a system or component is authentic and came from the OEM shown on the
nameplate.
The ATECC608A is generally compatible with the ATECC508A when properly configured. See Section
3.1 Microchip ATECC508A for more details.
1.2 Device Features
The ATECC608A includes an EEPROM array which can be used for storage of up to 16 keys, certificates,
miscellaneous read/write, read-only or secret data, consumption logging, and security configurations.
Access to the various sections of memory can be restricted in a variety of ways and then the
configuration can be locked to prevent changes.
Access to the device is made through a standard I
2
C Interface at speeds of up to 1 Mb/s. The interface is
compatible with standard Serial EEPROM I
2
C interface specifications. The device also supports a Single-
Wire Interface (SWI), which can reduce the number of GPIOs required on the system processor, and/or
reduce the number of pins on connectors. If the Single-Wire Interface is enabled, the remaining pin is
available for use as a GPIO, an authenticated output or tamper input.
Each ATECC608A ships with a guaranteed unique 72-bit serial number. Using the cryptographic
protocols supported by the device, a host system or remote server can verify a signature of the serial
number to prove that the serial number is authentic and not a copy. Serial numbers are often stored in a
ATECC608A
Introduction
© 2018 Microchip Technology Inc.
Datasheet Summary
DS40001977B-page 4