Skip to content

Binding the Target Board to the ATECC608A Device

Jump to bottom
KalyanCManukonda edited this page Jan 24, 2019 · 1 revision

This binding process is meant to protect against an adversary who may cut the wire(s) between the ATECC608A device and the host MCU. It also helps to prevent the ATECC608A device from being removed from the board to use on another. This helps restrict the impact to only one board if the attacker manages to extract the IO protection secret from the MCU.

No user intervention is needed for this step. Once the target board detects a crypto-device and the IO protection secret is not set on either the host MCU or on the crypto-device, it initiates the process.

Once the binding is done with a crypto-device, the target board initiates the BOOTPROT fuse setting. This disables all further writes to the Bootloader section of the target board.

At the end of this process, both the SAMD21 and the crypto-device are bound and have their unique IO protection secret.

Note: Once the binding between the crypto-device and the host MCU is completed, it is not possible to rebind them after erasing the IO protection secret of the host MCU.

  1. Home
  2. ATECC608A Applications
  3. SecureBoot Features
  4. SAM-BA Monitor
  5. Software Implementation
    1. Using SAM-BA Monitor Application
    2. Running SAM-BA
  6. Running the Example Application
    1. Building and Downloading the SAM-BA Monitor Application
    2. Building and Downloading the User Application
    3. Provisioning the ATECC608A Device
    4. Binding the Target Board to the ATECC608A Device
    5. Verifying the SecureBoot Feature
  7. Porting to other Bootloaders
Clone this wiki locally