ATECC608B

I've seen the post in the blog using the SSL client for secure MQTT, isn't possible to place in the i2c bus the ATECC608B crypto accelerator for ease the work, and save some flash (for certificate storage)?

Enrico Michieletti
Enrico Michieletti
95
| 3 1 2
Asked on 4/16/21, 8:10 PM
0
vote
247 Views

Hi, i'm not familiar with that IC, but i am using the MQTT over SSL in a sketch with a dozen libraries and 4000+ lines of code, and it only fills 48% of the 256KB available so i'm not sure you will run out of flash easily. In my understanding, you only need to store 1 self-signed certificate to avoid expiring CA certificates. Furthermore, your IDC expansion port will be occupied by an Ethernet or GSM module so access to I2C pins is not straightforward (unless you're using a PROTO, not an INDIO).

Tom
Tom
5675
| 1 1 3
Answered on 4/17/21, 8:24 AM
0
vote

In your test, how much time has taken the ssl channel establishment on the D21G? Thanks!

Enrico Michieletti
on 4/18/21, 7:11 AM

hi, it takes 3.7 seconds in my case, using the library example https://github.com/OPEnSLab-OSU/SSLClient/blob/master/examples/EthernetHTTPS/EthernetHTTPS.ino (changing Serial to SerialUSB)

Tom
on 4/19/21, 1:13 AM

Thanks! As from i've read, the crypto chip can almost halves that time. Yes, you need one certificate for every ssl tunnel endpoint (that can be more than one). I will try something. Thanks!

Enrico Michieletti
on 4/19/21, 7:19 AM

Your answer

Please try to give a substantial answer. If you wanted to comment on the question or answer, just use the commenting tool. Please remember that you can always revise your answers - no need to answer the same question twice. Also, please don't forget to vote - it really helps to select the best questions and answers!

Ask a Question

Keep Informed

About This Forum

This community is for professionals and enthusiasts of our products and services.

Read Guidelines

Question tools

63 follower(s)

Stats

Asked: 4/16/21, 8:10 PM
Seen: 247 times
Last updated: 4/17/21, 8:24 AM