Zero Touch Provisioning AWS IoT Kit

Microchip's Amazon Web Services (AWS) IoT kit for rapid prototyping of secure IoT applications

Image of Microchip's Zero Touch Provisioning AWS IoT KitThe AT88CKECC-AWS-XSTK-B Zero Touch Secure Provisioning Kit from Microchip Technology helps designers to quickly and securely develop IoT devices that are in compliance with the AWS security regulations. These regulations state that a device must use mutual authentication with a remote server to be authorized on the AWS cloud. Meanwhile, a robust authentication must also ensure a complete isolation of the system credentials such as private keys from the application core to avoid leaving backdoors opened to software loop holes. In addition, the software is as secure as the user's skillset is in security. Human users and software are one of the easiest targets for a hacker as they are the least reliable elements. Incorporating Microchip pre-configured ATECC508-MAHAW or ATECC508ASSHAW CryptoAuthentication devices into a system is a very secure method to connect to the AWS IoT service. This means the handling of certificate and private key manipulation to Microchip secure provisioning factories in addition to keeping secrets away from software and users.

The devices are pre-configured but not provisioned out of the box. Start with the upgraded Zero Touch Provisioning Kit for AWS IoT Version B and benefit from the new provisioning scripts (Python based) and AWS IoT account configuration scripts (using CloudFormation). This Version B of the kit comes with an easier onboarding process to generate certificates and provision them into the CryptoAuthentication device using Python scripts. In addition, the user will have access to a CloudFormation script to generate a web UI reflecting the I/O of the kit and utilize it as a foundation to develop virtually any sensor based use cases. In addition to the ATECC508AMAHAW, the kit includes a Cortex®-M4 ATSAMG55 and Wi-Fi ATWINC1500 using FreeRTOS and the ATWINC1500 integrated TLS stack. The AT88CKECC-AWS-XSTK-B kit enables customers to quickly and efficiently development secure IoT applications.

Features
  • Cryptographic co-processor with secure hardware-based key storage
  • Performs high-speed public key (PKI) algorithms:
    • ECDSA: FIPS186-3 Elliptic Curve Digital Signature Algorithm
    • ECDH: FIPS SP800-56A Elliptic Curve Diffie-Hellman Algorithm
  • NIST Standard P256 Elliptic Curve support
  • SHA-256 hash algorithm with HMAC option
  • Host and client operations
  • 256-bit key length
  • Storage for up to 16 keys
  • Two high-endurance monotonic counters
  • Guaranteed unique 72-bit serial number
  • Internal high-quality FIPS random number generator (RNG)
  • 10 Kb EEPROM memory for keys, certificates, and data
  • Storage for up to 16 keys
  • Multiple options for consumption logging and one time write information
  • Intrusion latch for external tamper switch or power-on chip enablement
  • Multiple I/O options: high-speed single pin interface with one GPIO pin - 1 MHz standard I2C interface
  • 2.0 V to 5.5 V supply voltage range
  • 1.8 V to 5.5 V IO levels
Applications
  • IoT node security and ID
  • Secure download and boot
  • Ecosystem control
  • Message security
  • Anti-cloning

Zero Touch Provisioning AWS IoT Kit

ImageManufacturer Part NumberDescriptionAvailable QuantityView Details
AT88CKECC-AWS-XSTK-B datasheet linkAWS ZEROTOUCHSECURE PROVISIONINGAT88CKECC-AWS-XSTK-BAWS ZEROTOUCHSECURE PROVISIONING21 - Immediate
AT88CKECC-AWS-XSTK-B product page link
Published: 2017-11-21