We detect you are using an unsupported browser. For the best experience, please visit the site using Chrome, Firefox, Safari, or Edge. X
Maximize Your Experience: Reap the Personalized Advantages by Completing Your Profile to Its Fullest! Update Here
Stay in the loop with the latest from Microchip! Update your profile while you are at it. Update Here
Complete your profile to access more resources.Update Here!

Part Number: Microchip Hardware-TLS Platform

MICROCHIP HARDWARE-TLS PLATFORM

  • Elliptic Curve Cryptography (ECC) hardware acceleration for resource-constrained IoT nodes - ECDSA authentication for node identification. ECDH Key Agreement for data encryption. Minimizes code and processing in the main device controller. Rapid execution of ECC processes even on M0-class processors.
  • Tamper-resistant secure storage of private keys, certificates and other sensitive data
  • Internal private key generation - Private keys are never accessible external to the device
  • Atmel Certified-ID Support - DIY secure certificate signing and provisioning
  • Low power consumption for battery operated IoT products
  • Flexible application for authentication on multiple network layers: Application, Transport, Link

Overview

Due to lack of better alternatives, TLS implementations have historically stored private keys and authentication credentials in software where they are more vulnerable to attack. In addition, the mathematics used for authentication and asymmetric key agreement were also done in software which is less feasible in small IoT devices that have limited code space and processing power.

The Hardware-TLS platform provides an interface between software TLS packages and the ATECC508A cryptographic co-processor. wolfSSL and OpenSSL implementations can now utilize hardware-based secure storage for private keys and authentication data and also allow resource-constrained IoT nodes to implement full elliptic curve authentication and Diffie-Hellman key agreement and session key derivation. With HW-TLS, TLS communications links can have hardened security even out to the smallest IoT edge node.

Device Description:
ATECC508A-wolfSSL ATECC508A crypto element hardened wolfSSL with private key protected storage and secure execution environments.
Download from wolfSSL: https://www.wolfssl.com/

ATECC508A-OpenSSL ATECC508A crypto element hardened OpenSSL with private key protected storage and secure execution environments.
Download from OpenSSL: https://wiki.openssl.org/index.php/Binaries
Download from GitHub: https://github.com/CSO/cryptoauth-openssl-engine

To view this video, please click manage cookies below and accept functional cookies.
Manage Cookies

All Application Notes

Documentation

Title
Document Id
Atmel Hardware-TLS (HW-TLS) Hardening Transport Layer Security for IoT Download 6a9a5a9b-ce8d-4f66-9025-aebcf5f5c8f6