Maxim Integrated / Mbed 2 deprecated DeepCover Embedded Security in IoT

MAXREFDES143#: DeepCover Embedded Security in IoT Authenticated Sensing & Notification

Dependencies:   MaximInterface mbed

The MAXREFDES143# is an Internet of Things (IoT) embedded security reference design, built to protect an industrial sensing node by means of authentication and notification to a web server. The hardware includes a peripheral module representing a protected sensor node monitoring operating temperature and remaining life of a filter (simulated through ambient light sensing) and an mbed shield representing a controller node responsible for monitoring one or more sensor nodes. The design is hierarchical with each controller node communicating data from connected sensor nodes to a web server that maintains a centralized log and dispatches notifications as necessary. The mbed shield contains a Wi-Fi module, a DS2465 coprocessor with 1-Wire® master function, an LCD, LEDs, and pushbuttons. The protected sensor node contains a DS28E15 authenticator, a DS7505 temperature sensor, and a MAX44009 light sensor. The mbed shield communicates to a web server by the onboard Wi-Fi module and to the protected sensor node with I2C and 1-Wire. The MAXREFDES143# is equipped with a standard shield connector for immediate testing using an mbed board such as the MAX32600MBED#. The simplicity of this design enables rapid integration into any star-topology IoT network requiring the heightened security with low overhead provided by the SHA-256 symmetric-key algorithm.

More information about the MAXREFDES143# is available on the Maxim Integrated website.

Files at this revision

API Documentation at this revision

Revision 14:0962f818bf7f, committed 2016-06-06

Comitter:
IanBenzMaxim
Date:
Mon Jun 06 10:49:15 2016 -0500
Parent:
13:6e753e78987c
Child:
15:8cc4cdea59da
Commit message:
Updated following downstream restructuring in OneWire library.

Changed in this revision

Factory.cpp Show annotated file Show diff for this revision Revisions of this file
SensorNode.cpp Show annotated file Show diff for this revision Revisions of this file
SensorNode.hpp Show annotated file Show diff for this revision Revisions of this file 
--- a/Factory.cpp	Fri May 27 11:47:20 2016 -0500
+++ b/Factory.cpp	Mon Jun 06 10:49:15 2016 -0500
@@ -109,7 +109,7 @@
     result = (sensorNode.ds28e15_22_25.computeSecret(sensorNode.authData.pageNum, false) == OneWireSlave::Success);
   // Configure slave secret on DS2465
   if (result)
-    result = (DS28E15_22_25::computeNextSecret(sensorNode.ds2465, pageData, sensorNode.authData.pageNum, partialSecret, sensorNode.ds28e15_22_25.romId, sensorNode.ds28e15_22_25.manId) == ISha256MacCoproc::Success);
+    result = (DS28E15_22_25::computeNextSecret(sensorNode.ds2465, pageData, sensorNode.authData.pageNum, partialSecret, sensorNode.ds28e15_22_25.romId(), sensorNode.ds28e15_22_25.manId()) == ISha256MacCoproc::Success);
   // Enable authentication protection if not set
   if (result && (protectionStatus != desiredProtection))
     result = (sensorNode.ds28e15_22_25.writeAuthBlockProtection(sensorNode.ds2465, desiredProtection, protectionStatus) == OneWireSlave::Success);
@@ -147,7 +147,7 @@
     result = (sensorNode.ds28e15_22_25.computeSecret(sensorNode.authData.pageNum, false) == OneWireSlave::Success);
   // Configure slave secret on DS2465
   if (result)
-    result = (DS28E15_22_25::computeNextSecret(sensorNode.ds2465, pageData, sensorNode.authData.pageNum, partialSecret, sensorNode.ds28e15_22_25.romId, sensorNode.ds28e15_22_25.manId) == ISha256MacCoproc::Success);
+    result = (DS28E15_22_25::computeNextSecret(sensorNode.ds2465, pageData, sensorNode.authData.pageNum, partialSecret, sensorNode.ds28e15_22_25.romId(), sensorNode.ds28e15_22_25.manId()) == ISha256MacCoproc::Success);
 
   return result;
 }
\ No newline at end of file

--- a/SensorNode.cpp	Fri May 27 11:47:20 2016 -0500
+++ b/SensorNode.cpp	Mon Jun 06 10:49:15 2016 -0500
@@ -86,7 +86,7 @@
   // Calculate secret
   if (result)
   {
-    result = (DS28E15_22_25::computeNextSecret(ds2465, pageData, authData.pageNum, scratchpad, ds28e15_22_25.romId, ds28e15_22_25.manId) == ISha256MacCoproc::Success);
+    result = (DS28E15_22_25::computeNextSecret(ds2465, pageData, authData.pageNum, scratchpad, ds28e15_22_25.romId(), ds28e15_22_25.manId()) == ISha256MacCoproc::Success);
   }
   return result;
 }
@@ -148,7 +148,7 @@
     return false;
   // Compute expected MAC
   DS28E15_22_25::Mac controllerMac;
-  if (DS28E15_22_25::computeAuthMac(ds2465, pageData, authData.pageNum, challenge, ds28e15_22_25.romId, ds28e15_22_25.manId, controllerMac) != ISha256MacCoproc::Success)
+  if (DS28E15_22_25::computeAuthMac(ds2465, pageData, authData.pageNum, challenge, ds28e15_22_25.romId(), ds28e15_22_25.manId(), controllerMac) != ISha256MacCoproc::Success)
     return false;
   // Check if authentic
   return (nodeMac == controllerMac);
@@ -204,8 +204,10 @@
   
   ds2465.OWSetSpeed(DS2465::OverdriveSpeed);
   
-  if (ds2465.OWReadRom(ds28e15_22_25.romId) != OneWireMaster::Success)
+  RomId romId;
+  if (ds2465.OWReadRom(romId) != OneWireMaster::Success)
     return UnableToCommunicate;
+  ds28e15_22_25.setRomId(romId);
   
   if (!checkProvisioned(provisioned))
     return UnableToCommunicate;

--- a/SensorNode.hpp	Fri May 27 11:47:20 2016 -0500
+++ b/SensorNode.hpp	Mon Jun 06 10:49:15 2016 -0500
@@ -84,7 +84,7 @@
   bool readSensorData(SensorData & sensorData);
   
   /// Get the ROM ID for this sensor node.
-  const OneWire::RomId & romId() const { return ds28e15_22_25.romId; }
+  const OneWire::RomId romId() const { return ds28e15_22_25.romId(); }
   
   /// Get the initial lux measurement for this sensor node.
   double initialLux() const { return m_initialLux; }