SLE 66C321PE M5.1

Security & Chip Card ICs SLE 66C321PE 8/16-Bit Security Controller with enhanced instruction set for large memories in 0.22 µm CMOS Technology 96-Kbytes ROM, 2304 Bytes RAM, 32-Kbytes EEPROM Preliminary Short Product Information 01.05 SLE 66C321PE Short Product Information Ref.: .: SPI_SLE 66C321PE_0105 This document contains preliminary information on a new product under development. Details are subject to change without notice. Revision History: Current Version 01.05 Previous Releases: 02.04 Page Important: Further information is confidential and on request. Please contact: Infineon Technologies AG in Munich, Germany, Security & Chip Card ICs, Tel +49 - (0)89 234-80000 Fax +49 - (0)89 234-81000 E-Mail: security.chipcard.ics@infineon.com Edition 2005 Published by Infineon Technologies AG, CC Applications Group St.-Martin-Strasse 53, D-81541 München © Infineon Technologies AG 2002 All Rights Reserved. Attention please! The information herein is given to describe certain components and shall not be considered as warranted characteristics. Terms of delivery and rights to technical change reserved. We hereby disclaim any and all warranties, including but not limited to warranties of non-infringement, regarding circuits, descriptions and charts stated herein. Infineon Technologies is an approved CECC manufacturer. Information For further information on technology, delivery terms and conditions and prices please contact your nearest Infineon Technologies Office in Germany or our Infineon Technologies Representatives world-wide (see address list). Warnings Due to technical requirements components may contain dangerous substances. For information on the types in question please contact your nearest Infineon Technologies Office. Infineon Technologies Components may only be used in life-support devices or systems with the express written approval of Infineon Technologies, if a failure of such components can reasonably be expected to cause the failure of that life-support device or system, or to affect the safety or effectiveness of that device or system. Life support devices or systems are intended to be implanted in the human body, or to support and/or maintain and sustain and/or protect human life. If they fail, it is reasonable to assume that the health of the user or other persons may be endangered. SLE 66C321PE 16-Bit Security Controller with enhanced instruction set for large memories in 0.22µm CMOS Technology, 96-Kbyte ROM, 2304 Bytes RAM, 32-Kbyte EEPROM Features • • • New New • • Instruction set opcode compatible with standard SAB 8051 processor New New New • • • • • • New • • • • • New • Downward compatibility to existing SLE 66CxxxP products for existing masks without using the new features Internal Clock with up to 33 MHz: Programmable internal frequency (PLL x1, x2, x3, x4 and free running mode(s)). Adjustable frequency according to available power or required performance • • Addressable memory up to 16 Mbyte Additional enhanced instructions for direct physical memory access of >64kByte • • New 8/16-bit microcomputer in 0.22 µm CMOS technology • • • Typically saves up to 90 % code space and increases execution speed up to 80 %. Dedicated, non-standard architecture with execution time 6 times faster than standard SAB 8051 processor at same external clock. (Up to 18 times faster using internal frequency PLL x 3 compared to external clock). • • • 96 Kbytes User ROM for application programs 32 Kbytes MicroSlim-EEPROM 2 Kbytes XRAM, 256 bytes internal RAM Enhanced Memory Management and Protection Unit (MMU) with application and user defined segments Increased internal clock frequency for maximum performance Internal frequency is automatically adjusted to guarantee a given limited power consumption Two 16-bit Autoreload Timer Power saving sleep mode Ext. Clock freq. 1 up to 7.5 MHz for int. Clock up to 33 MHz UART for handling serial interface in accordance with ISO/IEC 7816 part 3 supporting transmission protocols T=1 and T=0 Supply voltage range:1.8 V, 3.0 V, 5.0 V Support of current consumption limits by GSM / UICC applications < 10 mA @ 5.5 V < 6 mA @ 3.3 V < 4 mA @ 1.98 V True Random Number Generator with Firmware test function • • • CRC Module MicroSlim-EEPROM 16-bit Interrupt Module • • • DES in software Code executions during E²-programming for faster personalization EEPROM programming voltage generated on chip New New • • • • • • • Preliminary - Short Product Information 3/8 Operating Temperature range: -25 to +85°C Storing temperature range: –40° to +125°C ESD protection larger than 6 kV (HBM) Write cycle time 0.7ms Erase cycle time 0.7 ms Typical programming time (erase & write) incl. firmware 2 ms Fast personalization mode < 0.9 ms per page Enhanced Error Correction Unit controlled by OS Reading and programming byte by byte Flexible page mode for 1 to 64 bytes write/erase operation 32 bytes security area (OTP) Minimum of 500.000 write/erase cycles @ 25°C per page. Maximum of 16.500.000 write/erase cycles per sector Typical data retention of 10 years @ 25°C 01.05 SLE 66C321PE Memory Management and Protection Unit New • • • • • New • • Anti Snooping • • Addressable memory of up to 16 Mbyte Separates OS (system mode) and application (user mode) • • System routines called by interrupts OS can restrict access to peripherals in application mode • Variable application orientated segments defined and controlled by OS Code execution from XRAM possible Automatic randomization smoothing of power profile Effective HW-countermeasures against SEMA/DEMA, SPA/DPA, DFA and Timing-Attacks Non standard dedicated Smart Card CPU – Core Active Shield with automatic and user controlled attack detection Hardware countermeasures controlled by True Random Number Generator Targeted Certification • Enhanced multi-application support by 16 descriptors for system / application mode CAST Support • Security Features • • • • New • Enhanced sensor concept: • • • • • • Low and high voltage sensors • • • • Light Sensor Glitch Sensors Temperature Sensor Sparkling SFR encryption for DDES and ACE, CRC module and RNG • 32 bytes security PROM, hardware protected for batch-, wafer-, die-individual security data. Unique chip identification number for each chip • Additional memory for customer-defined security FabKey on request • MED – memory encryption/decryption device for XRAM, ROM and EEPROM • • • • • EMV 2000 GSM 11.11, 11.12, 11.18 ETSI TS 102 221 Document References Bus confusion • • ISO/IEC 7816 Life Test Function for Sensors (UMSLC) Memory Security • Application notes Supported Standards Frequency sensors and filters • • • • HW-& SW-Tools (Emulator, ROM Monitor, Card Emulator, Simulator, Softmasking) Security reset detection Current control oscillator (ICO) Confidential Data Book SLE 66CxxxPE Qualification report Chip delivery specification for wafer with chip-layout (die size, orientation,...) Module specification package, etc. containing description Qualification report module Development Tools Overview Security optimized layout and layout scrambling • Fast IRAM erase Short Product Information Software Development Kit SDK CC Short Product Information ROM Monitor RM66PE Short Product Information Emulator ET66PE Hitex or ET66PE KSC Short Product Information Smart Mask Package Enhanced Error correction unit (ECU) Testmode • Irreversible Lock - Out of test-mode Preliminary - Short Product Information of 4/8 01.05 SLE 66C321PE Ordering Information Type Package1 SLE 66C321PE C Die (sawn, unsawn) SLE 66C321PE M5 M5.1 Voltage Temperature Range Range 1.8 V; 3.0 V; 5.0 V – 25°C to + 70°C or or 3.0 V; 5.0 V – 25°C to + 85°C Frequency Range (int. clock frequency Frequency Range (ext. clock frequency) 1 MHz - 5 MHz Up to 33 MHz or 1 MHz - 7.5 MHz For ordering information please refer to the databook and contact your sales representative. 1 available as wire-bonded module (M5) for embedding in plastic cards or as die (C) for customer packaging Preliminary - Short Product Information 5/8 01.05 SLE 66C321PE Pin Configuration VCC GND CLK RST SLE 66C321PE I/O Figure 1: Pin Configuration Pin Definitions and Functions Symbol Function VCC Operating voltage RST Reset input CLK Processor clock input GND Ground I/O Bi-directional data port Preliminary - Short Product Information 6/8 01.05 SLE 66C321PE General Description The SLE66C321PE is one member of the improved 66PE-series of Infineon Technologies and the successor of the SLE66C322P. This high performance security controller is manufactured in advanced 0.22 µm CMOS technology. It is downward compatible to existing 66P controller derivatives. The well known ECO2000 8/16 bit CPU provides the high efficiency of the SAB 8051 instruction set extended by additional powerful instructions together with enhanced performance, memory sizes and security features compared to existing 66P derivatives. Performance: The internal clock frequency can be adjusted to a level up to 33 MHz either as a multiple of 1,2,3,4 to the external frequency or independent of the clock rate of the terminal with the help of the internal clock. It is adjustable according to either available power requirements or required performance: • New Increased internal clock frequency for maximum performance, e.g. for high performance with max. frequency in payment applications. • Automatically adjusted frequency for a max. given power consumption, e.g. by GSM or UMTS requirements. Memory: The SLE66C321PE offers 96 Kbytes of User-ROM, 256 byte internal RAM, 2048 byte XRAM and 32 Kbytes MicroSlim-EEPROM, to fulfill the requirements of mainly standard GSM an SDA payment applications. The large ROM size allows to place applications in the ROM-mask and to keep the E²PROM free for customer data. In addition it saves mask development costs, as one mask may be used for different customer projects. The enhanced Memory Management and Protection Unit allows a secure separation of the operating system and different applications. It allows to separate the memories in application orientated segments, which can be controlled by the OS. Furthermore, the MMU makes a secure downloading of applications possible even after personalization of a card. These new features suit the requirements of the next generation of multi application operating systems. Voltage Clock Reset ROM 96 Kbyte XRAM 2 Kbyte 16-Bit CPU with MMU & ECO 2000 Instruction Set EEPROM 32 Kbyte Address-/Data Bus Sleep Mode Logic Sensors/Filters Interrupt Voltage Regulator two 16-bit Timer CRC Random Number Generator UART Clock generated Figure 2: Block Diagram SLE 66C321PE The new platform is designed to address up to 16Mbyte. However this feature is only available upon request and will clearly require a change in the existing tool environment. In addition, new instructions have been implemented in the design for an efficient direct access of physical memory >64KByte up to16 MByte. Preliminary - Short Product Information 7/8 01.05 SLE 66C321PE Security features: Since the very beginning, security is an integrated part of Infineons product development, as proved by various certificates (ITSEC, CC, Proton, VISA, ZKA, Mondex). The so called “integral security concept” for the 66P series ensures: • • • A secret storage of any confidential code, data and keys Protection against side channel attacks such as: Simple Power Analysis (SPA) , Differential Power Analysis (DPA), Protection against Differential Fault Analysis (DFA), Electromagnetic Emanation Attack (EMA) and other possible HW or SW attacks Peripherals: The CRC module allows the easy generation of checksums according to ISO/IEC 3309 (16-Bit-CRC). To minimize the overall power consumption, the chip card controller IC offers a sleep mode. The UART supports the halfduplex transmission protocols T=0 and T=1 according to ISO/IEC 7816-3. All relevant transmission parameters can be adjusted by software, as e.g. the clock division factor, direct/inverse convention and the number of stop bits. Additionally, the I/O port can be driven by communication routines realized in software. Symmetric algorithms can be processed in software. The random number generator (RNG) is able to supply the CPU with true random numbers on all conditions. The advanced sensor concept includes various sensors for any kind of attack scenarios and even more important a “Life Test ” for sensors. The SLE 66C321PE fulfills all requirements of today's chip card applications, and is especially designed for mainstream GSM applications. In addition it belongs to a powerful platform for multi application cards and support the migration to enhanced GSM/WAP, OTA, GPRS and UMTS value added services. The SLE66C321PE integrates outstanding memory sizes, in combination with enhanced performance and optimized power consumption on a minimized die size. Preliminary - Short Product Information 8/8 01.05