AT88CKECCSIGNER

AT88CKECCSIGNER Signer Module Utility USER GUIDE Atmel AT88CKECCSIGNER Provisioning Signer Module Kit Introduction ® The Atmel Signer Module Utility application provides an easy and secure method to create an intermediate ® certificate authority for provisioning the Atmel ECC-based CryptoAuthentication™ devices. The Intermediate Certificate Authority is created by having the Root Certificate Authority Sign the Public Key of the Signer Module. This can then be used to sign end devices at the subcontractor or to sign firmware before download or deployment. This document describes the usage of the Atmel Signer Module Utility application. Features  Un-configured Signer Module Flow to create your own Intermediate Certificate Authority (CA)  Configured Signer Module Flow to create additional intermediate Certificate Authorities (CA) Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 Ta bl e of Conte nts Un-configured Signer Module Flow ................................................................................... 3 Step 1 Step 2 Step 3 Step 4 Step 5 Step 6 Step 7 Step 8 Step 9 Start the Signer Module Utility application .............................................................................. 3 Insert an Un-configured Signer Module .................................................................................. 3 Signer Module Configuration................................................................................................... 4 Signer Module Advanced Configuration .................................................................................. 6 Signer Module Load Backup File ............................................................................................ 7 Configure Signer Module ........................................................................................................ 8 Save The Signer Module Source Code Files ........................................................................ 10 Saving the Signer Module file as a Backup ........................................................................... 11 Signer Module Additional Information ................................................................................... 12 Configured Signer Module Flow ...................................................................................... 13 Step 1 Step 2 Step 3 Start the Signer Module Utility Application ............................................................................ 13 Insert Configured Root Module ............................................................................................. 14 Signer Module Additional Information ................................................................................... 14 Atmel Evaluation Board/Kit Important Notice and Disclaimer ....................................... 17 Revision History................................................................................................................ 17 2 AT88CKECCSIGNER Signer Module Utility [USER GUIDE] 2 Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 Un-configured Signer Module Flow Step 1 Start the Signer Module Utility application Start the Signer Module Utility application by selecting the Signer Module Utility application from the following Microsoft Window Start Menu location: ► Select the Start Menu > All Programs > Atmel Secure Products > Provisioning Kits > and then Signer Module Utility. The Atmel Signer Module Utility application window displays as shown below: Figure 1. Step 2 Signer Module Utility Application Main Window Insert an Un-configured Signer Module 1. Insert an un-configured Signer Module from the AT88CKECCSIGNER Provisioning Signer Module Kit. The Signer Module is read by the Signer Module Utility application, and information about the Signer Module is displayed on the Signer Module Utility application main window. 2. Insert a configured Root Module from the AT88CKECCROOT kit. The Root Module must have a unique key configuration completed. Keep the Root and Signer Modules inserted in the computer until the Signer Module configuration has been completed. The Signer Module is configured using the already configured inserted Root Module. AT88CKECCSIGNER Signer Module Utility [USER GUIDE] Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 3 3 3. Select Next > to continue to the Signer Module configuration. Figure 2. Sample Un-configured Signer Module Main Window Step 3 1. Signer Module Configuration Provide the Signer Module configuration information as shown in the figure below. Move the mouse cursor over the Module configuration information. – Signer Configuration  Module Description (Not Required) –  4 image to display help information about the Signer The description the Signer Module to be configured. Is referenced in the future. – Maximum length is 63 alpha-numeric characters. Certificate Common Name (Required) – The Signer Module certificate common name. – The Signer Module certificate common name is required for the Signer Module’s X.509 certificate. – The Signer Module certificate common name is used to uniquely identify the Signer Module’s X.509 certificate. – Maximum length is 60 alpha-numeric characters. AT88CKECCSIGNER Signer Module Utility [USER GUIDE] 4 Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015  – Password (Optional): (Not Required) – Used to access and use the Signer Module in the provisioning production flow. – Maximum length is 31 alpha-numeric characters. Device Configuration  Certificate Common Name (Required) – The device certificate common name. – The device certificate common name is required for the device’s X.509 certificate. – The device certificate common name is used to uniquely identify the device’s X.509 certificate. – Maximum length is 63 alpha-numeric characters 2. Select Advanced… to open the Signer Module Utility - Advanced Configuration Information dialog box. 3. After entering the Signer Module configuration information, select Commit > to configure the Signer Module. See Step 6 for more information. Figure 3. Signer Module Configuration AT88CKECCSIGNER Signer Module Utility [USER GUIDE] Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 5 5 Step 4 Signer Module Advanced Configuration Provide the following Signer Module advanced configuration information. 1. Click on Load Signer Module Backup File… to load the Signer Module backup file. See Step 5 for more information. Move the mouse cursor over the Module configuration information. – Signer Module Configuration   Signing Limit (1 – 2097151) (Required) – The number of times this Signer Module can sign an ECC device during production. – The signing limit can be used to limit the number of devices that are signed by the Signer Module. – Maximum limit is 2097151 Certificate Expiration (Required) – Expiration date in years since the issue date. – The expiration date is added to the Signer Module’s X.509 certificate. – Determines how many years this Signer Module can sign device X.509 certificates in the provisioning production flow. – Possible values:  – 6 None: No expiration date specified.  The number of years before the Signer Module’s X.509 certificate expires. Device Module Configuration  2. image to display help information about the Signer Certificate Expiration (Required) – Expiration date in years since the issue date. – The expiration date is added to the device’s X.509 certificate. – Possible values:  None: No expiration date specified.  Years (1 – 31): The number of years before the device’s X.509 certificate expires. Click on OK to save any changes to the Signer Module advanced configuration. AT88CKECCSIGNER Signer Module Utility [USER GUIDE] 6 Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 Figure 4. Step 5 Signer Module Advanced Configuration Signer Module Load Backup File The Signer Module Load Backup File capability is used to create a Signer Module with the same certificate configuration as a previous configured Signer Module. This does not duplicate the private key, but only the certificate definitions. The original Signer Module configuration process saved the backup file. Figure 5. Example Open Signer Module Load Backup File Dialog Box After the Signer Module load backup file has been loaded, the Signer Module configuration information is loaded from the backup file, and some editable fields are disabled. AT88CKECCSIGNER Signer Module Utility [USER GUIDE] Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 7 7 Figure 6. Step 6 1. Example Signer Module Configuration Information After The Backup File Is Loaded Configure Signer Module After entering the Signer Module configuration information, click on Commit > to configure to the Signer Module. The Signer Module configuration process starts. It is very important that the configured Signer Module be stored in a save place. The Signer Module is part of the trusted certificate authority within the Atmel Secure Provisioning System. 2. 8 Follow the directions to configure the Signer Module. AT88CKECCSIGNER Signer Module Utility [USER GUIDE] 8 Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 Figure 7. Signer Module Configuration Figure 8. Signer Module Configure Warning Dialog box Figure 9. Signer Module Configure Question Dialog Box AT88CKECCSIGNER Signer Module Utility [USER GUIDE] Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 9 9 Figure 10. Signer Module Successful Configuration Dialog Box 3. After the Signer Module is successfully configured, it asks to save the Signer Module source code files used during the creation of the customized provisioning firmware to work with the Provisioning Production Server. See Step 7 for more information. 4. After a Signer Module backup file is saved, options to save additional configured Signer Module information are provided. See Step 9 for more information. Step 7 Save The Signer Module Source Code Files After the Signer Module has been configured, the option to save the Signer Module source code files is given. Start the save the Signer Module source code files process. 10 Figure 11. Save the Signer Module Source Code Files Dialog Box Figure 12. Select Signer Module Source Code Folder Dialog Box AT88CKECCSIGNER Signer Module Utility [USER GUIDE] 1 Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 0 Figure 13. Step 8 Signer Module Source Code Files Saved Successfully Dialog Box Saving the Signer Module file as a Backup The Signer Module Save Backup File capability is used to save a Signer Module’s configuration. The backup is used to create additional Signer Modules with the same certificate definitions at a later date and time. It is extremely important to save the Signer Module configuration backup file. Figure 14. Example Save Signer Module Backup File Dialog AT88CKECCSIGNER Signer Module Utility [USER GUIDE] Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 11 1 1 Step 9 Signer Module Additional Information The configured Signer Module Additional Information allows the Signer Module operations to be performed.  Save Signer Module Backup File… button:  Save Signer Module Certificate File… button: – –  Saves the Signer Module X.509 certificate file. This certificate file is used to verify that an AT88CKECCSIGNER Signer Module was created with the inserted configured Root Module. Save Source Code Files… button: – Starts the process to save the Signer Module source code files. See Step 7 for more information. Figure 15. Configured Signer Module Additional Information Dialog Box Figure 16. Example Save Signer Module Certificate File Dialog Box Note: 12 Saves the Signer Module backup file. See Step 8 for more information. This certificate file can verify that a Signer Module was created with the inserted configured Root Module. AT88CKECCSIGNER Signer Module Utility [USER GUIDE] 1 Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 2 Configured Signer Module Flow After the original Signer Module has been configured, the option to create as many Signer Modules that are needed is given. Please follow the directions carefully. Step 1 Start the Signer Module Utility Application Start the Signer Module Utility application by selecting the Signer Module Utility application from the Microsoft Window Start Menu location: ► Select the Start Menu > All Programs > Atmel Secure Products > Provisioning Kits > and then Signer Module Utility. The Atmel Signer Module Utility window displays: Figure 17. Signer Module Utility Application Main Window AT88CKECCSIGNER Signer Module Utility [USER GUIDE] Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 13 1 3 Step 2 Insert Configured Root Module 1. Insert a configured Signer Module from the AT88CKECCSIGNER Kit. 2. Insert the Root Module (from the AT88CKECCROOT kit) that was used to configure the Signer Module in the first place. The Signer Module is read by the Signer Module Utility application, and information about the Signer Module is displayed on the Signer Module Utility application main window. Keep the Root and Signer Modules inserted in the computer until the Signer Module configuration has been completed. 3. Click on Next > to continue to the Signer Module configuration Figure 18. Step 3 Sample Configured Signer Module Main Window Signer Module Additional Information The configured Signer Module Additional Information allows the Signer Module to perform its operations. Select Update > to update the Signer Module password.  Save Signer Module Backup File… button: – 14 Saves the Root Module backup file. See Step 8, “Saving the Signer Module file as a Backup” from the previous section for more information. AT88CKECCSIGNER Signer Module Utility [USER GUIDE] 1 Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 4  Save Signer Module Certificate File… button: –  Save Source Code Files… button: –  Saves the Signer Module X.509 certificate file. This certificate file is used to verify that an AT88CKECCSIGNER Signer Module was created with the inserted configured Root Module. Starts the process to save the Signer Module source code files. See Step 7, “Save The Signer Module Source Code Files” from the previous section for more information. Signer Configuration: – Remaining Device Signs:  – Figure 19. The remaining number of times this Signer Module can sign an ECC device during production. Password (Optional):  Allows the Signer Module password used to access and use the Signer Module in the provisioning production flow to be changed.  Maximum length is 31 alpha-numeric characters.  To remove the password in the provisioning production flow, set the password to an empty password and select Update > to update the Signer Module password. Configured Signer Module Additional Information Dialog Box AT88CKECCSIGNER Signer Module Utility [USER GUIDE] Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 15 1 5 Figure 20. Note: 16 Example Save Signer Module Certificate File Dialog Box This certificate file can verify that a Signer Module was created with the inserted configured Root Module. Figure 21. Update Signer Module Password Question Dialog Box Figure 22. Signer Module Password Updated Successfully Dialog Box AT88CKECCSIGNER Signer Module Utility [USER GUIDE] 1 Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 6 Atmel Evaluation Board/Kit Important Notice and Disclaimer This evaluation board/kit is intended for user's internal development and evaluation purposes only. It is not a finished product and may not comply with technical or legal requirements that are applicable to finished products, including, without limitation, directives or regulations relating to electromagnetic compatibility, recycling (WEEE), FCC, CE or UL. Atmel is providing this evaluation board/kit “AS IS” without any warranties or indemnities. The user assumes all responsibility and liability for handling and use of the evaluation board/kit including, without limitation, the responsibility to take any and all appropriate precautions with regard to electrostatic discharge and other technical issues. User indemnifies Atmel from any claim arising from user's handling or use of this evaluation board/kit. Except for the limited purpose of internal development and evaluation as specified above, no license, express or implied, by estoppel or otherwise, to any Atmel intellectual property right is granted hereunder. ATMEL SHALL NOT BE LIABLE FOR ANY INDIRECT, SPECIAL, INCIDENTAL, OR CONSEQUENTIAL DAMGES RELATING TO USE OF THIS EVALUATION BOARD/KIT. ATMEL CORPORATION 1600 Technology Drive San Jose, CA 95110 USA Revision History Doc Rev. Date 8969A 12/2015 Comments Initial document release. AT88CKECCSIGNER Signer Module Utility [USER GUIDE] Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 17 1 7 Atmel Corporation 1600 Technology Drive, San Jose, CA 95110 USA T: (+1)(408) 441.0311 F: (+1)(408) 436.4200 │ www.atmel.com © 2015 Atmel Corporation. / Rev.:Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015. Atmel®, Atmel logo and combinations thereof, Enabling Unlimited Possibilities®, CryptoAuthentication™, and others are registered trademarks or trademarks of Atmel Corporation in U.S. and other countries. Other terms and product names may be trademarks of others. DISCLAIMER: The information in this document is provided in connection with Atmel products. No license, express or implied, by estoppel or otherwise, to any intell ectual property right is granted by this document or in connection with the sale of Atmel products. EXCEPT AS SET FORTH IN THE ATME L TERMS AND CONDITIONS OF SALES LOCATED ON THE ATMEL WEBSITE, ATMEL ASSUMES NO LIABILITY WHATSOEVER AND DISCLAIMS ANY EXPRESS, IMPLIED OR STATUTORY WARRANTY RELATING TO ITS PRODU CTS INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT. IN NO EVENT SHALL ATMEL BE LIABLE FOR ANY DIRECT, INDIRECT, CONSEQUENTIAL, PUNITIVE, SPECIAL OR INCIDENTAL DAMAGES (INCLUDING, WITHOUT LIMITATION, DAMAG ES FOR LOSS AND PROFITS, BUSINESS INTERRUPTION, OR LOSS OF INFORMATION) ARISING OUT OF THE USE OR INABILITY TO USE THIS DOCUMENT, EVEN IF ATMEL HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. Atmel makes no representations or warranties with respect to the accuracy or completeness of the contents of this document and reserves the right to make changes to specifications and products descriptions at any time without notice. Atmel does not make any com mitment to update the information contained herein. Unless specifically provided otherwise, Atmel products are not suitable for, and shall not be used in, automotive applications. Atmel products are not intended, authorized, or wa rranted for use as components in applications intended to support or sustain life. SAFETY-CRITICAL, MILITARY, AND AUTOMOTIVE APPLICATIONS DISCLAIMER: Atmel products are not designed for and will not be used in connection with any applications where the failure of such products would reasonably be expected to result in significant personal injury or death (“Safety -Critical Applications”) without an Atmel officer's specific written consent. Safety-Critical Applications include, without limitation, life support devices and systems, equipment or systems for the operation o f nuclear facilities and weapons systems. Atmel products are not designed nor intended for use in military or aerospace applications or environments unless specifically designated by Atmel as military-grade. Atmel products are not designed nor intended for use in automotive applications unless specifically designated by Atmel as automotive-grade. Atmel-8969A-CryptoAuth-AT88CKECCSIGNER-UserGuide_122015 18 AT88CKECCSIGNER Signer Module Utility [USER GUIDE] 1 8