ESP32 with ATECC608A
-
- Posts: 30
- Joined: Mon Oct 15, 2018 2:10 am
ESP32 with ATECC608A
Hello,
I am trying to configure the ESP32 with ATECC608. My goal is to connect to AWS over a TLS connection. However, I would like to utilize the HW acceleration/security features of the ECC608 during the TLS handshake (specifically, the ECDSA signature verification).
It would be preferable to use either Arduino IDE or ESP-IDF for this process, since I already have an AWS project set up in these environments. Configuring with ECC508 would also be okay, since the procedure should be the same.
Basically, I just want to know if anyone has any experience communicating with the ECC608/508 with the ESP32, and if they could help point me in the right direction.
Thanks in advance.
I am trying to configure the ESP32 with ATECC608. My goal is to connect to AWS over a TLS connection. However, I would like to utilize the HW acceleration/security features of the ECC608 during the TLS handshake (specifically, the ECDSA signature verification).
It would be preferable to use either Arduino IDE or ESP-IDF for this process, since I already have an AWS project set up in these environments. Configuring with ECC508 would also be okay, since the procedure should be the same.
Basically, I just want to know if anyone has any experience communicating with the ECC608/508 with the ESP32, and if they could help point me in the right direction.
Thanks in advance.
Re: ESP32 with ATECC608A
hi sir,
to u have news me too i want to use ATECC608A with ESP32 ?
to u have news me too i want to use ATECC608A with ESP32 ?
-
- Posts: 25
- Joined: Tue Aug 13, 2019 2:03 pm
Re: ESP32 with ATECC608A
Hi @GerryTitan @mohasrj , Thanks for the request,
Actually we are currently developing an example on how to use ATECC608A with ESP32 ( i.e. ESP32-WROOM32-SE), The example is nearly complete, and by the next week we will be able to provide you the preview of the example which you will be able to build and test with your application.
Actually we are currently developing an example on how to use ATECC608A with ESP32 ( i.e. ESP32-WROOM32-SE), The example is nearly complete, and by the next week we will be able to provide you the preview of the example which you will be able to build and test with your application.
-
- Posts: 30
- Joined: Mon Oct 15, 2018 2:10 am
Re: ESP32 with ATECC608A
Thanks for the response. I have actually succeeded in pairing with the ECC608 since my initial post.
Re: ESP32 with ATECC608A
293/5000ESP_flying_raijin wrote: ↑Thu Jan 30, 2020 12:44 pmHi @GerryTitan @mohasrj , Thanks for the request,
Actually we are currently developing an example on how to use ATECC608A with ESP32 ( i.e. ESP32-WROOM32-SE), The example is nearly complete, and by the next week we will be able to provide you the preview of the example which you will be able to build and test with your application.
I am trying to provision Azure with ATECC608A and ESP32. At the moment I am following the example https://github.com/kmwebnet/ECC608-AzureIoT-Connect but there are misdirected libraries. Now I am trying in my environment with Eclipse and ESP-IDF and Azure-SDK, but I have not yet achieved
Re: ESP32 with ATECC608A
Hi,
@ESP_flying_raijin where can I found that example?
@ESP_flying_raijin where can I found that example?
Re: ESP32 with ATECC608A
Hi,
I'm interested about it. Where I can found the example?
Thank you in advance
I'm interested about it. Where I can found the example?
Thank you in advance
Re: ESP32 with ATECC608A
Hi @GerryTitan.
I´m also working to get this working and wounder if you are willing to share your code ?
I´m also working to get this working and wounder if you are willing to share your code ?
-
- Posts: 364
- Joined: Mon Jan 04, 2021 2:06 pm
-
- Posts: 41
- Joined: Tue May 21, 2019 8:33 pm
Re: ESP32 with ATECC608A
Hello All,
I have been perusing through the sample code associated with the use of the ECC608 and I see that the private key is being extracted from the device using atca_mbedtls_pk_init() in order to complete the initialization of the tlsDataParams structure. It appears the mbedTLS implementation handles all the TLS handshake requirements "under the hood", so it would be necessary that it has access to the device certificate, CA certificate and the private key.
We currently have a product using a different radio and an ECC508 to store our secrets. The ECC508 is not directly accessible by the radio, but is connected to the host microcontroller which utilizes several other key storage locations and the hardware crypto engine to accomplish other tasks. The original radio interface passes all crypto requests to the host controller which acts as the liaison to the ECC508. This allows the ECC508 to handle all crypto requests, keeping the private key(s) secure.
We are considering modifying our product to use the ESP32. I was wondering if there is any way to redirect the cryptography requests (cert verify, ECDH, signing, etc.) to the host controller as our current radio does, allowing the ECC508 to conduct secure operations.
Thanks in advance,
Mark
I have been perusing through the sample code associated with the use of the ECC608 and I see that the private key is being extracted from the device using atca_mbedtls_pk_init() in order to complete the initialization of the tlsDataParams structure. It appears the mbedTLS implementation handles all the TLS handshake requirements "under the hood", so it would be necessary that it has access to the device certificate, CA certificate and the private key.
We currently have a product using a different radio and an ECC508 to store our secrets. The ECC508 is not directly accessible by the radio, but is connected to the host microcontroller which utilizes several other key storage locations and the hardware crypto engine to accomplish other tasks. The original radio interface passes all crypto requests to the host controller which acts as the liaison to the ECC508. This allows the ECC508 to handle all crypto requests, keeping the private key(s) secure.
We are considering modifying our product to use the ESP32. I was wondering if there is any way to redirect the cryptography requests (cert verify, ECDH, signing, etc.) to the host controller as our current radio does, allowing the ECC508 to conduct secure operations.
Thanks in advance,
Mark
Who is online
Users browsing this forum: No registered users and 187 guests