Challenge & Response Authentication using symmetric SHA-256
Works with MAXAUTHDEMO1 with DS28C36
Challenge & Response Authentication using asymmetric ECDSA
Works with MAXAUTHDEMO1 with DS28C36
Authenticated Sha-256 write
Works with MAXAUTHDEMO1 with DS28C36
Authenticated ECDSA write
Works with MAXAUTHDEMO1 with DS28C36
ECDH key establishment & Encrypted IO
Works with MAXAUTHDEMO1 with DS28C36
Secure Download
Works with MAXAUTHDEMO1 with DS28C36
Secure GPIO
Works with MAXAUTHDEMO1 with DS28C36
True Random Generator
Works with MAXAUTHDEMO1 with DS28C36
Secure Counting
Works with MAXAUTHDEMO1 with DS28C36
Challenge & Response Authentication using asymmetric ECDSA
Works with MAXAUTHDEMO2 with DS28E38
True Random Generator
Works with MAXAUTHDEMO2 with DS28E38
Secure Counting
Works with MAXAUTHDEMO2 with DS28E38
DeepCover Security Lab
Running the Lab
- Order the MAXAUTHDEMO1# or MAXAUTHDEMO2#
- Plug in the MAXAUTHDEMO
- Download the Security Lab application
- Run the Security Lab application
- A command window will open with a prompt to 'Enter link code'. Type the code below at the prompt
026614
- Press the Start Connection button to establish connection between the website and the Security Lab application
Start Hardware Interface - Select the desired hardware
- Select the desired lab from the left
Select Hardware
Challenge & Response Authentication Using Symmetric SHA-256
0
-
- Host Detect Device
- DS28C36
Host Computed Slave Secret
Select Page
Authentication Result
Challenge & Response Authentication Using Asymmetric ECDSA
0
-
- Host Detect Device
- DS28C36
Verify Slave is Part of System
Modify Hash Input
Select Page
Authentication Result
Authenticated SHA-256 Write
0
-
- Host Detect Device
- DS28C36
USB Adapter Connected
MAN ID
ROM ID
Host Computed Slave Secret
Secret
Slave Page 0
Old Data
New Data
Auth HMAC
Press Compute HMAC (Required for Computation)
New Page Data
Page Data
Authenticate New Page Data
Challenge
Attacks
Replay Attack
Man-in-the Middle (Modify Page Data)
Authenticated ECDSA Write
0
-
- Host Detect Device
- DS28C36
USB Adapter Connected
MAN ID
ROM ID
Slave Authenticate Host Public Key
Public Key SX
Public Key SY
Customization
Signature R
Signature S
Press Generate Signature (Required for Computation)
Slave Page 1
Old Data
New Data
Signature R
Signature S
Press Generate Signature (Required for Computation)
Authenticate New Page Data
Page Data
Challenge
Device Public Key X
Device Public Key Y
Authentication Result
ECDH Key Establishment and Encrypted IO
0
-
- Host Detect Device
- DS28C36
USB Adapter Connected
MAN ID
ROM ID
Verify Slave is Part of System
Hash Input
Certificate R
Certificate S
Compute Slave Session Key
Host Public Key X
Host Public Key Y
Customization
ECDH Customization
Signature R
Signature S
Press Generate Signature (Required for Computation)
Compute Host Session Key
Device Public Key X
Device Public Key Y
ECDH Customization
Session Key
Press Compute Session Key (Required for Computation)
Encrypted Page Data (Using Page 2)
Encrypted Page Data
DS28C36 Challenge
Decrypted Page Data
Secure Download
0
-
- Host Detect Device
- DS28C36
USB Adapter Connected
MAN ID
ROM ID
Verify Slave is Part of System
Hash Input
Certificate R
Certificate S
Sign Download Data
Signature R
Signature S
Press Sign Data (Required for Computation)
Secure Encrypted GPIO
0
-
- Host Detect Device
- DS28C36
USB Adapter Connected
MAN ID
ROM ID
Host Computed Slave Secret
Secret
GPIO Page
Encrypted Old Data
Decrypted Old Data
New Data
New Encrypted Data
Write Auth HMAC
Press Compute HMAC (Required for Computation)
Check Board to see GPIO Update
True Random Generator
0
-
- Host Detect Device
- DS28C36
USB Adapter Connected
MAN ID
ROM ID
Select Number of RNG Bytes
Number of Bytes
RNG Bytes Received
Secure Counting
0
-
- Host Detect Device
- DS28C36
USB Adapter Connected
MAN ID
ROM ID
Secure Counting
Current Counter Value
Challenge & Response Authentication Using Asymmetric ECDSA
0
-
- Host Detect Device
- DS28E38
USB Adapter Connected
MAN ID
ROM ID
Verify Slave is Part of System
Hash Input
Certificate R
Certificate S
Simulate Incorrect Certificate
Modify Hash Input
Select Page
Page Data
Public Key X
Public Key Y
Challenge
Authentication Result
True Random Generator
0
-
- Host Detect Device
- DS28E38
USB Adapter Connected
MAN ID
ROM ID
Select Number of RNG Bytes
Number of Bytes
RNG Bytes Received
Secure Counting
0
-
- Host Detect Device
- DS28E38
USB Adapter Connected
MAN ID
ROM ID
Secure Counting
Current Counter Value
Challenge & Response Authentication Using Asymmetric ECDSA
0
-
- Host Detect Device
- DS28C36
Verify Slave is Part of System
Modify Hash Input
Select Page
Authentication Result
Authenticated SHA-256 Write
0
-
- Host Detect Device
- DS28C36
USB Adapter Connected
Host Computed Slave Secret
Secret
Slave Page 0
Old Data
New Data
Auth HMAC
Press Compute HMAC (Required for Computation)
New Page Data
Page Data
Authenticate New Page Data
Challenge
Attacks
Replay Attack
Man-in-the Middle (Modify Page Data)
Authenticated ECDSA Write
0
-
- Host Detect Device
- DS28C36
USB Adapter Connected
Slave Authenticate Host Public Key
Public Key SX
Public Key SY
Customization
Signature R
Signature S
Press Generate Signature (Required for Computation)
Slave Page 1
Old Data
New Data
Signature R
Signature S
Press Generate Signature (Required for Computation)
Authenticate New Page Data
Page Data
Challenge
Device Public Key X
Device Public Key Y
Authentication Result
ECDH Key Establishment and Encrypted IO
0
-
- Host Detect Device
- DS28C36
USB Adapter Connected
Verify Slave is Part of System
Hash Input
Certificate R
Certificate S
Compute Slave Session Key
Host Public Key X
Host Public Key Y
Customization
ECDH Customization
Signature R
Signature S
Press Generate Signature (Required for Computation)
Compute Host Session Key
Device Public Key X
Device Public Key Y
ECDH Customization
Session Key
Press Compute Session Key (Required for Computation)
Encrypted Page Data (Using Page 2)
Encrypted Page Data
DS28C36 Challenge
Decrypted Page Data
Secure Download
0
-
- Host Detect Device
- DS28C36
USB Adapter Connected
Verify Slave is Part of System
Hash Input
Certificate R
Certificate S
Sign Download Data
Signature R
Signature S
Press Sign Data (Required for Computation)
Secure Encrypted GPIO
0
-
- Host Detect Device
- DS28C36
USB Adapter Connected
Host Computed Slave Secret
Secret
GPIO Page
Encrypted Old Data
Decrypted Old Data
New Data
New Encrypted Data
Write Auth HMAC
Press Compute HMAC (Required for Computation)
Check Board to see GPIO Update
True Random Generator
0
-
- Host Detect Device
- DS28C36
USB Adapter Connected
Select Number of RNG Bytes
Number of Bytes
RNG Bytes Received
Secure Counting
0
-
- Host Detect Device
- DS28C36
USB Adapter Connected
Secure Counting
Current Counter Value
Challenge & Response Authentication Using Asymmetric ECDSA
0
-
- Host Detect Device
- DS28E38
USB Adapter Connected
Verify Slave is Part of System
Hash Input
Certificate R
Certificate S
Simulate Incorrect Certificate
Modify Hash Input
Select Page
Page Data
Public Key X
Public Key Y
Challenge
Authentication Result
True Random Generator
0
-
- Host Detect Device
- DS28E38
USB Adapter Connected
Select Number of RNG Bytes
Number of Bytes
RNG Bytes Received
Secure Counting
0