替代ATECC608A的完美兼容加密芯片-MOD8ID

 最近发现了一款ATECC608A的完美兼容替代加密芯片，型号是MODSEMI的MOD8ID，真正做到了P2P兼容，感人的是，不需要改变主机端原有的Cryptolib库，甚至无需更改任何代码和硬件即可完美适配。

ECCDSA的产生密钥对签名，验签，SecureBOOT，TLS等接口功能都很完美，硬件防护也做得非常到位。不仅如此，也向下兼容了ATECC508系列，同时具备国密安全等功能。

支持DFN8小封装和SOP8。

    /* [0] init: I2C通信连接、测试（使用MOD8ID通信调试，I2C驱动移植请参考ecc_i2c.c） */
    status = mse_init(&cfg_mod8_i2c);
    if (status != MSE_SUCCESS)
    {
        printf(" mse_init() failed with ret=0x%08d\n", status);
        goto exit;
    }
    printf(" init OK.\n");

    /* [1] Load configuration:加载配置并锁定配置区（仅执行一次，注意：锁定后无法解锁） */
    status = app_load_configuration();
     if (status != MSE_SUCCESS)
     {
         printf(" APP - Load configuration failed\n");
         goto exit;
     }
     printf(" Load configuration OK.\n");

    /* [2] Write Slot Data:生成密钥、写入密钥及应用配套数据，锁定数据区（锁定后无法解锁），前置条件：[1] */
     status = app_write_key();
     if (status != MSE_SUCCESS)
     {
        printf(" APP - Write key failed\n");
         goto exit;
     }
     printf(" Write key OK.\n");

    /* [3] Sign_Verify: 签名、验签、加解密等应用，前置条件[2] */
     status = app_sign_verify();
     if (status != MSE_SUCCESS)
     {
         printf(" APP - Sign_Verify failed\n");
         goto exit;
     }
     printf(" Sign_Verify OK.\n");

    /* [4] HMAC: 前置条件[2] */
     status = app_hmac();
     if (status != MSE_SUCCESS)
    {
    printf(" APP - HMAC failed\n");
         goto exit;
    }
     printf(" HMAC OK.\n");

Key features

• Security co-processor with cryptographic algorithm and key storage
  1. 1. High-end security controller
     2. Protected Storage for Keys, Certificates or Data
• Hardware Support for Asymmetric Sign,Verify,authentication,Key Agreement:
  1. 1. Hardware cryptographic algorithm processor: SM2, ECC-P256, SHA-256, TRNG
     2. ECDSA: Elliptic Curve Digital Signature
     3. ECDH:  Elliptic Curve Diffie-Hellman
     4. SM2:   Diffie-Hellman Ephemeral (ECDHE) over the SM2 elliptic curve
• Hardware Support for Symmetric Algorithms:
  1. 1. SHA-256 & HMAC
     2. SM4: Block-cipher symmetric algorithm Encrypt/Decrypt
     3. AES-128/256: Encrypt/Decrypt
• Networking Key Management Support:
  1. 1. security key generation and key agreement
     2. Communication data encryption with protected
     3. Turnkey PRF/HKDF calculation for TLS
• Security update and firmware Support:
  1. 1. High security ECDSA firmware signature validation
     2. Full life cycle secure boot validation
     3. Firmware upgrade protection and data encryption protection
• Internal High-Quality NIST Standard Random Number Generator (RNG)
• Up to 5kB of user security storage to store extended security information
• Unique Serial Number
• High-Endurance Monotonic Counters
• Interface Options Available400k/1 MHz Standard I2C Interface
• Fast and easy integration
• DFN8 and SOP8 Packages

关于ATECC608和MOD8ID加密芯片的使用得技术与调试可私信。