1

- CO2064SEC

Smart Secure

Ethernet Controller

October 2007

Confidential

Confidential

Agenda

• Overview• Typical Configuration and specifications• Key Features• Advantages and benefits• Evaluation Environment

Confidential

Overview

• CO2064SEC is a Smart Secure Ethernet Controller aimed at applications that requires Ethernet connectivity characterized with:• Narrow range of simultaneously used Internet Protocols• Need for security • Sensitivity to cost.

• CO2064SEC is a cost effective, full secure networking solution replacement for a plain Ethernet controller

• CO2064SEC Offers:• Extensive communication capabilities• Secure Communication• Secure Application Architecture• Easy and seamless integration

• All for the best cost to performance ratio available.

Confidential

iChip CO2xxx Functional Block Diagram

Green IP blocks available only on CO2128

Confidential

5

Specifications

Process 0.13µm (low leakage)

Speed 48MHz

Core, IO power supply

3.3V (On-chip 1.2V Regulator)

Power Consumption 142mW Typical

Operating temperature

-40ºC to +85ºC

Packages LQFP64 (10 x 10 x 1.4 mm)

Confidential

6

CO2064 vs. CO2128 Hardware Comparison

CO2064 CO2128

HPI √

EBI √

SSC √

USB Host √ √

USB Client √ √

SPI √ √

TWI (two-wire) √ √

UARTS √ √

10/100 MAC √ √

RNG √ √

SHA √ √

AES √ √

3DES √ √

Smart Card √ √

Confidential

Application CPU

CO2064 System Architecture

UARTiChipSec

CO2064S

PI

Flash

Application Flash*

USB

SPI

10/100 Eth. PHY

10/100 Eth. MAC RMII

Confidential

Typical Configurations

• Firmware loaded from Host Memory

• Firmware loaded from dedicated SPI Flash

CO2064SEC Architecture Benefits

Application CPU Drivers

TCP/IP

Upper Layer Protocols

Network Controller +

Ethernet MAC

Ethernet Controller

SecuraGAP - Secure Networking Architecture that acts as a firewall and enables secure communication (SSL3).

PHY

Trusted Zone Secure Zone

CO2064SEC

SecuraGAP Architecture Benefits

• CO2064SEC acts as a Gate Keeper, keeping application CPU immune from network hazards

• Demanding Security tasks are offloaded from the Application CPU

• Complete secure solution for application and communication

• No license fee or added cost.

Confidential

Confidential

Open Architecture

• Open Architecture - features clustered into flavors (separate FW files)

• Memory size is kept minimal by selecting only features that are needed for the application (per firmware file).• Flexibility is retained as additional functionality can be added at any time.

Flavor A• 10 active TCP/UDP• SerialNET mode• Sending plain-text Email• An FTP client• An HTTP client

Flavor B• A single secure SSL3/TLS1 socket• 9 non-secure TCP/UDP sockets• Network Time Client

CO2064SEC benefits

• Focus on your business• Develop your application, not security and communication

• Best security• SSL3 in Hardware: Faster transactions, require less external memory, no license fee.• SecuraGAP architecture

• Quick time to market – one month design time• Minimal development & software integration• Minimal testing & Minimal certification

• Cost effective• iChip costs as much as typical plain Ethernet controller but gives much more

• Tried and True Solution• Used by Tier 1 companies• Over 1 Million chips in the field

• Use existing CPU, no big redesign• Simple AT+I commands• Offload all communication and SSL3 security to iChip

iChip Key Features

• Host Interface• High speed serial interface (future support up to 3MB)• SPI interface (future support up to 12Mbps)• USB Host and Device (future support 12Mbps)

• Security HW• Full hardware implementation of the entire SSL mechanism

enables extremely fast transaction time.• Built in Ethernet MAC• TCP Throughput

• Higher CPU speed and hardware added functions enables fast and efficient TCP stack.

• Includes complete set of low-level drivers, TCP/IP stack and many upper layers protocols - tried and true.

Confidential

iChip Key Benefits – Future Proof

• iChip ease large scale product deployment by offering:• Easy and seamless Access to any iChip located

behind NAT or Firewall, with public or local IP, known or Dynamically allocated.

• Control and configure any of your iChips and devices on the field.

• Remotely Manage your devices and iChips to stay up to date with ever changing environment.

Confidential

Evaluation Environment

Confidential

The II-EVB-600 connects via RS232 interface to a PC

running the iChip Config Utility and allow easy

configuration and activation of Internet based protocols.