ATECC608A-TFLXTLS
ATECC608A-TFLXTLS CryptoAuthentication
™
Data Sheet
Introduction
The ATECC608A-TFLXTLS is a pre-provisioned variant of the ATECC608A. The TrustFLEX secure element is part of
Microchip’s family of generically provisioned security-focused devices. The device configuration was designed to
make the secure element applicable to some of the most common use cases in the IoT market, while minimizing the
learning and start-up curves associated with security devices.
The ATECC608A-TFLXTLS configuration is nearly identical to that of the ATECC608A-TNGTLS. Some additional
flexibility has been provided with respect to data loaded into certificate and key slots and the locking options of those
slots. These slot access polices will be set by the Trust Platform Design Suite tools prior to ordering the ATECC608A-
TFLXTLS devices. A Single Wire Interface (SWI) option is also available for the ATECC608A-TFLXTLS device.
This data sheet provides the slot and key configuration information that is unique to the ATECC608A-TFLXTLS. This
information clearly defines the access policies of each of the data zone slots. Only relevant command and I/O
operating information has been included. An application section discussing Microchip’s hardware and software tools
that can aid in developing an application is also provided with additional links to the location of the tools.
Features
• Specified Configuration Zone with limited selectable options.
• I/O Options
– I
2
C Interface with One-Time Changeable I
2
C Address
– Single Wire Interface (SWI)
• One Permanent Primary P-256 Elliptic Curve Cryptography (ECC) Private Key Fixed at Manufacturing Time
• One Internal Sign Private Key for Key Attestation
• Three Secondary P-256 ECC Private Keys that Can Be Regenerated by the User
• Signer Public Key from Signer Certificate
• Public Key Validation Support
• One Customizable Symmetric Secret Key Slot
• IO Protection Key Slot to Protect I
2
C Communication
• Secure Boot Enabled with Customizable Secure Boot Public Key at Time of Manufacture
• ECDH/KDF Key Slot Capable of Being Used with AES Keys and Commands
• X.509 Compressed Certificate Storage
• Customizable Certificate Storage Slots
• Available in 8-Pad UDFN and 8-Pin SOIC Packages in 2k unit production quantities.
Applications
• Secure IoT TLS 1.2 and 1.3 Connections
• Secure Boot/Secure Firmware Update
• Disposable/Accessory Authentication
• I/P and Data Protection
© 2019 Microchip Technology Inc.
Datasheet
DS40002138A-page 1
Table of Contents
Introduction.....................................................................................................................................................1
Features......................................................................................................................................................... 1
Applications.................................................................................................................................................... 1
1. Pin Configuration and Pinouts.................................................................................................................6
2. EEPROM Memory and Data Zone Access Policies................................................................................7
2.1. ATECC608A-TFLXTLS Configuration Zone.................................................................................8
2.1.1. Modifiable Configuration Zone Bytes...........................................................................10
2.2. Data Zone and Access Policies..................................................................................................11
2.2.1. Data Zone Data Types................................................................................................. 11
2.2.1.1. Private Keys.............................................................................................. 11
2.2.1.2. Public Keys................................................................................................12
2.2.1.3. Certificates Dynamic Storage....................................................................12
2.2.1.4. Secure Boot...............................................................................................13
2.2.1.5. Secret Key.................................................................................................13
2.2.1.6. AES Key Storage...................................................................................... 13
2.2.1.7. IO Protection Key...................................................................................... 13
2.2.1.8. General Data Storage............................................................................... 14
2.2.2. Slot Configuration Terminology....................................................................................14
2.2.3. ATECC608A-TFLXTLS Slot Configuration Summary..................................................14
2.2.4. ATECC608A-TFLXTLS Detailed Slot Access Policies................................................ 15
2.3. ATECC608A-TFLXTLS EEPROM One Time Programmable (OTP) Zone.................................25
3. Static RAM (SRAM) Memory................................................................................................................ 26
3.1. TempKey.................................................................................................................................... 26
3.2. Message Digest Buffer............................................................................................................... 27
3.3. Alternate Key Buffer................................................................................................................... 27
3.4. SHA Context Buffer....................................................................................................................27
4. General Command Information.............................................................................................................28
4.1. I/O Transactions......................................................................................................................... 28
4.2. Command Packets..................................................................................................................... 28
4.3. Status/Error Codes.....................................................................................................................29
4.4. Address Encoding...................................................................................................................... 30
4.4.1. Configuration Zone Addressing................................................................................... 30
4.4.2. OTP Zone Addressing................................................................................................. 30
4.4.3. DataZone Addressing..................................................................................................30
4.5. Formatting of Keys, Signatures and Certificates........................................................................ 32
4.5.1. ECC Key Formatting....................................................................................................32
4.5.1.1. Public Key Formats................................................................................... 32
4.5.2. Signature Format.........................................................................................................33
4.5.3. Certificate Storage.......................................................................................................33
5. Device Commands................................................................................................................................35
5.1. General Device Commands....................................................................................................... 35
ATECC608A-TFLXTLS
© 2019 Microchip Technology Inc.
Datasheet
DS40002138A-page 2