ABRIDGED DATA SHEET 219-0018; Rev 0; 6/12 DS28E15 1-Wire SHA-256 Secure Authenticator with 512-Bit User EEPROM General Description Features The DS28E15 combines crypto-strong bidirectional secure challenge-and-response authentication functionality with an implementation based on the FIPS 180-3-specified Secure Hash Algorithm (SHA-256). A 512-bit user-programmable EEPROM array provides nonvolatile storage of application data. Additional protected memory holds a read-protected secret for SHA256 operations and settings for memory protection control. Each device has its own guaranteed unique 64-bit ROM identification number (ROM ID) that is factory programmed into the chip. This unique ROM ID is used as a fundamental input parameter for cryptographic operations and also serves as an electronic serial number within the application. A bidirectional security model enables two-way authentication between a host system and slave-embedded DS28E15. Slave-to-host authentication is used by a host system to securely validate that an attached or embedded DS28E15 is authentic. Hostto-slave authentication is used to protect DS28E15 user memory from being modified by a nonauthentic host. The DS28E15 communicates over the single-contact 1-WireM bus at overdrive speed. The communication follows the 1-Wire protocol with the ROM ID acting as node address in the case of a multidevice 1-Wire network. S Symmetric-Key-Based Bidirectional Secure Authentication Model Based on SHA-256 S Strong Authentication with a High-Bit-Count UserProgrammable Secret and Input Challenge S 512 Bits of User EEPROM Partitioned Into Two Pages of 256 Bits S User-Programmable and Irreversible EEPROM Protection Modes Including Authentication, Write and Read Protect, and OTP/EPROM Emulation S Unique Factory-Programmed, 64-Bit Identification Number S Single-Contact 1-Wire Interface S Operating Range: 3.3V ±10%, -40°C to +85°C S ±8kV HBM ESD Protection (typ) S 2-Pin SFN, 6-Pin TDFN-EP, and 6-Pin TSOC Packages Applications Authentication of Consumables Secure Feature Control Ordering Information appears at end of data sheet. Typical Application Circuit RP = 1.1kΩ MAXIMUM I2C BUS CAPACITANCE 320pF 3.3V RP (I2C PORT) SDA SCL VCC DS2465 µC SLPZ IO 1-Wire LINE DS28E15 #1 DS28E15 #2 DS28E15 #n 1-Wire is a registered trademark of Maxim Integrated Products, Inc. For related parts and recommended products to use with this part, refer to: www.maxim-ic.com/DS28E15.related For pricing, delivery, and ordering information, please contact Maxim Direct at 1-888-629-4642, or visit Maxim’s website at www.maxim-ic.com. 1 ABRIDGED DATA SHEET DS28E15 1-Wire SHA-256 Secure Authenticator with 512-Bit User EEPROM ABSOLUTE MAXIMUM RATINGS IO Voltage Range to GND.....................................-0.5V to +4.0V IO Sink Current....................................................................20mA Operating Temperature Range........................... -40NC to +85NC Junction Temperature......................................................+150NC Storage Temperature Range............................. -55NC to +125NC Lead Temperature (TDFN, TSOC only; soldering, 10s)...+300NC Soldering Temperature (TDFN, TSOC only; reflow).........+260NC Note: The SFN package is qualified for electro-mechanical contact applications only, not for soldering. For more information, refer to Application Note 4132: Attachment Methods for the Electro-Mechanical SFN Package. Stresses beyond those listed under “Absolute Maximum Ratings” may cause permanent damage to the device. These are stress ratings only, and functional operation of the device at these or any other conditions beyond those indicated in the operational sections of the specifications is not implied. Exposure to absolute maximum rating conditions for extended periods may affect device reliability. ELECTRICAL CHARACTERISTICS (TA = -40NC to +85NC, unless otherwise noted.) (Note 1) PARAMETER SYMBOL CONDITIONS MIN TYP MAX UNITS IO PIN: GENERAL DATA 1-Wire Pullup Voltage VPUP (Note 2) 2.97 3.63 V 1-Wire Pullup Resistance RPUP VPUP = 3.3V Q10% (Note 3) 300 1500 I Input Capacitance CIO Input Load Current IL (Notes 4, 5) 1500 IO pin at VPUP High-to-Low Switching Threshold VTL (Notes 6, 7) Input Low Voltage VIL (Notes 2, 8) 5 pF 19.5 0.65 x VPUP FA V 0.3 V VTH (Notes 6, 9) 0.75 x VPUP Switching Hysteresis VHY (Notes 6, 10) 0.3 Output Low Voltage VOL IOL = 4mA (Note 11) Recovery Time tREC RPUP = 1500I (Notes 2, 12) 5 Fs Time Slot Duration tSLOT (Notes 2, 13) 13 Fs Low-to-High Switching Threshold V V 0.4 V IO PIN: 1-Wire RESET, PRESENCE-DETECT CYCLE Reset Low Time tRSTL (Note 2) 48 Reset High Time tRSTH (Note 14) 48 80 Presence-Detect Sample Time tMSP (Notes 2, 15) 8 10 Fs Write-Zero Low Time tW0L (Notes 2, 16) 8 16 Fs Write-One Low Time tW1L (Notes 2, 16) 1 2 Fs tRL (Notes 2, 17) 1 2-d Fs tMSR (Notes 2, 17) tRL + d 2 Fs Fs Fs IO PIN: 1-Wire WRITE IO PIN: 1-Wire READ Read Low Time Read Sample Time 2 ABRIDGED DATA SHEET DS28E15 1-Wire SHA-256 Secure Authenticator with 512-Bit User EEPROM ELECTRICAL CHARACTERISTICS (continued) (TA = -40NC to +85NC, unless otherwise noted.) (Note 1) PARAMETER SYMBOL CONDITIONS MIN TYP MAX UNITS EEPROM Programming Current IPROG VPUP = 3.63V (Notes 5, 18) 1 mA Programming Time for a 32-Bit Segment tPROG (Note 19) 10 ms Write/Erase Cycling Endurance NCY TA = +125NC (Notes 20, 21) Data Retention tDR TA = +125NC (storage) (Notes 22, 23, 24) 100k — 10 Years SHA-256 ENGINE Computation Current ICSHA Computation Time tCSHA Refer to the full data sheet. mA ms Note 1: Limits are 100% production tested at TA = +25°C and/or TA = +85°C. Limits over the operating temperature range and relevant supply voltage range are guaranteed by design and characterization. Typical values are not guaranteed. Note 2: System requirement. Note 3: Maximum allowable pullup resistance is a function of the number of 1-Wire devices in the system and 1-Wire recovery times. The specified value here applies to systems with only one device and with the minimum 1-Wire recovery times. Note 4: Typical value represents the internal parasite capacitance when VPUP is first applied. Once the parasite capacitance is charged, it does not affect normal communication. Note 5: Guaranteed by design and/or characterization only. Not production tested. Note 6: VTL, VTH, and VHY are a function of the internal supply voltage, which is a function of VPUP, RPUP, 1-Wire timing, and capacitive loading on IO. Lower VPUP, higher RPUP, shorter tREC, and heavier capacitive loading all lead to lower values of VTL, VTH, and VHY. Note 7: Voltage below which, during a falling edge on IO, a logic 0 is detected. Note 8: The voltage on IO must be less than or equal to VIL(MAX) at all times the master is driving IO to a logic 0 level. Note 9: Voltage above which, during a rising edge on IO, a logic 1 is detected. Note 10: After VTH is crossed during a rising edge on IO, the voltage on IO must drop by at least VHY to be detected as logic 0. Note 11: The I-V characteristic is linear for voltages less than 1V. Note 12: Applies to a single device attached to a 1-Wire line. Note 13: Defines maximum possible bit rate. Equal to 1/(tW0L(MIN) + tREC(MIN)). Note 14: An additional reset or communication sequence cannot begin until the reset high time has expired. Note 15: Interval after tRSTL during which a bus master can read a logic 0 on IO if there is a DS28E15 present. The power-up presence detect pulse could be outside this interval but will be complete within 2ms after power-up. Note 16: ε in Figure 11 represents the time required for the pullup circuitry to pull the voltage on IO up from VIL to VTH. The actual maximum duration for the master to pull the line low is tW1L(MAX) + tF - ε and tW0L(MAX) + tF - ε, respectively. Note 17: δ in Figure 11 represents the time required for the pullup circuitry to pull the voltage on IO up from VIL to the input-high threshold of the bus master. The actual maximum duration for the master to pull the line low is tRL(MAX) + tF. Note 18: Current drawn from IO during the EEPROM programming interval or SHA-256 computation. The pullup circuit on IO during the programming and computation interval should be such that the voltage at IO is greater than or equal to VPUP(MIN). A low-impedance bypass of RPUP activated during programming and computation is the recommended way to meet this requirement. Note 19: Refer to the full data sheet. Note Note Note Note 20: Write-cycle endurance is tested in compliance with JESD47G. 21: Not 100% production tested; guaranteed by reliability monitor sampling. 22: Data retention is tested in compliance with JESD47G. 23: Guaranteed by 100% production test at elevated temperature for a shorter time; equivalence of this production test to thedata sheet limit at operating temperature range is established by reliability testing. 3 ABRIDGED DATA SHEET DS28E15 1-Wire SHA-256 Secure Authenticator with 512-Bit User EEPROM ELECTRICAL CHARACTERISTICS (continued) (TA = -40NC to +85NC, unless otherwise noted.) (Note 1) Note 24: EEPROM writes can become nonfunctional after the data-retention time is exceeded. Long-term storage at elevated temperatures is not recommended. Note 25: Refer to the full data sheet. Pin Configurations TOP VIEW TOP VIEW + 1 IO 2 N.C. 3 6 N.C. DS28E15 5 N.C. 4 N.C. N.C. 1 IO 2 GND 3 + 28E15 ymrrF GND BOTTOM VIEW DS28E15 *EP TSOC *EXPOSED PAD TDFN-EP (3mm × 3mm) 6 N.C. 5 N.C. 4 N.C. GND 2 IO 1 DS2431GA SFN (3.5mm × 6.5mm × 0.75mm) NOTE: THE SFN PACKAGE IS QUALIFIED FOR ELECTROMECHANICAL CONTACT APPLICATIONS ONLY, NOT FOR SOLDERING. FOR MORE INFORMATION, REFER TO APPLICATION NOTE 4132: ATTACHMENT METHODS FOR THE ELECTRO-MECHANICAL SFN PACKAGE. Pin Descriptions PIN NAME SFN TDFN-EP TSOC — 1, 4, 5, 6 3– 6 N.C. 1 2 2 IO 2 3 1 GND — — — EP FUNCTION Not Connected 1-Wire Bus Interface. Open-drain signal that requires an external pullup resistor. Ground Reference Exposed Pad (TDFN Only). Solder evenly to the board’s ground plane for proper operation. Refer to Application Note 3273: Exposed Pads: A Brief Introduction for additional information. 4 ABRIDGED DATA SHEET DS28E15 1-Wire SHA-256 Secure Authenticator with 512-Bit User EEPROM Note to readers: This document is an abridged version of the full data sheet. Additional device information is available only in the full version of the data sheet. To request the full data sheet, go to www.maxim-ic.com/ DS28E15 and click on Request Full Data Sheet. Ordering Information PART TEMP RANGE PIN-PACKAGE DS28E15G+ -40NC to +85NC 2 SFN DS28E15G+T -40NC to +85NC 2 SFN (2.5k pcs) DS28E15Q+T -40NC to +85NC 6 TDFN-EP* (2.5k pcs) DS28E15P+ -40NC to +85NC 6 TSOC DS28E15P+T -40NC to +85NC 6 TSOC (4k pcs) +Denotes a lead(Pb)-free/RoHS-compliant package. T = Tape and reel. *EP = Exposed pad. Package Information For the latest package outline information and land patterns (footprints), go to www.maxim-ic.com/packages. Note that a “+”, “#”, or “-” in the package code indicates RoHS status only. Package drawings may show a different suffix character, but the drawing pertains to the package regardless of RoHS status. PACKAGE TYPE PACKAGE CODE OUTLINE NO. LAND PATTERN NO. 2 SFN T23A6N+1 21-0575 — 6 TDFN-EP T633+2 21-0137 90-0058 6 TSOC D6+1 21-0382 90-0321 42 ABRIDGED DATA SHEET DS28E15 1-Wire SHA-256 Secure Authenticator with 512-Bit User EEPROM Revision History REVISION NUMBER REVISION DATE 0 6/12 DESCRIPTION Initial release PAGES CHANGED — Maxim cannot assume responsibility for use of any circuitry other than circuitry entirely embodied in a Maxim product. No circuit patent licenses are implied. Maxim reserves the right to change the circuitry and specifications without notice at any time. The parametric values (min and max limits) shown in the Electrical Characteristics table are guaranteed. Other parametric values quoted in this data sheet are provided for guidance. Maxim Integrated Products, Inc. 160 Rio Robles, San Jose, CA 95134 USA 1-408-601-1000 © 2012 Maxim Integrated Products 43 Maxim is a registered trademark of Maxim Integrated Products, Inc.