The data security services are used to authenticate the device, generate unique random number, and store the encrypted data. The following table lists all the Data Security system services with their command values, description, and return status code.
System Service Name | SERVICECMD in Hexadecimal | Description | Return Status Code |
---|---|---|---|
Digital Signature Service | 19, 1A | Takes a user-supplied SHA-384 hash and signs it with the device's 384-bit private “factory” EC key, FEK, which is the private half of the key pair whose public key (DCPK) is certified by Microchip in the device's X.509-compliant supply chain assurance certificate. |
|
Secure NVM Write Service | 10, 11, 12 | Provides write access to pages in the sNVM. |
|
Secure NVM Read Service | 18 | Provides access to the data stored by the Secure NVM Write service or data programmed via a bitstream. |
|
PUF Emulation Service | 20 | Provides a mechanism for authenticating a device, or for generating pseudo-random bit strings that can be used for many different purposes. |
|
Nonce Service | 21 | Generates a 256-bit random number derived from the start-up states of a dedicated SRAM. |
|