Chip Card & Security SLE 88CF4000P 32-Bit Security Controller Optimized for multi-application cards with high level of security 400 kBytes Flexible EEPROM 16 kBytes RAM Common Criteria EAL5+ (high) certified Short Product Information 12.2009 Important: Further information is confidential and on request. Please contact: Infineon Technologies AG in Munich, Germany, Chip Card & Security Email: security.chipcard.ics@infineon.com www.infineon.com/security Published by Infineon Technologies AG, 81726 Munich, Germany (c) Infineon Technologies AG 2009 All Rights Reserved. Attention please! The information herein is given to describe certain components and shall not be considered as warranted characteristics. Terms of delivery and rights to technical change reserved. We hereby disclaim any and all warranties, including but not limited to warranties of non-infringement, regarding circuits, descriptions and charts stated herein. Infineon Technologies is an approved CECC manufacturer. Information For further information on technology, delivery terms and conditions and prices please contact your nearest Infineon Technologies Office in Germany or our Infineon Technologies Representatives world-wide (see address list). Warnings Due to technical requirements components may contain dangerous substances. For information on the types in question please contact your nearest Infineon Technologies Office. Infineon Technologies Components may only be used in life-support devices or systems with the express written approval of Infineon Technologies, if a failure of such components can reasonably be expected to cause the failure of that life-support device or system, or to affect the safety or effectiveness of that device or system. Life support devices or systems are intended to be implanted in the human body, or to support and/or maintain and sustain and/or protect human life. If they fail, it is reasonable to assume that the health of the user or other persons may be endangered. SLE 88CF4000P General Features * Dedicated 32-bit smartcard core designed in cost-optimized 0.13 m technology * Pipelined 32-Bit RISC CPU with proprietary instruction set * Specific instructions for Virtual Machine implementation like Java Card * Ultra low power consumption design * Very fast Task Switching supported by hardware mechanism for pre-emptive multitasking support * Maximum performance * CPU supplied by 2 Cache Memories for fast instruction fetch and data access * Internal clock generation up to 66 MHz * Intelligent Power Manager which adjusts automatically and efficiently the internal clock according to a dedicated power class * Secure multi-application with Memory Management and Protection Unit (MMU) * 256 packages separated and secured by hardware firewalls * Data and code access controlled by hardware * Memory and peripherals access managed with hardware supervisor components Memory * 400 kBytes EEPROM with Flash functionality and free partitioning between code and data * 16 kBytes RAM for local variables, buffers, and stacks * Memories encrypted by MED (Memory Encryption/Decryption) device * Memories protected by Hardware Error Correction Code Interfaces * Smartcard UART for handling serial interface in accordance with ISO/IEC 7816 part3 supporting transmission protocols T=1 and T=0, Support of clock division factor of 16 (PPS96) Short Product Information 3/9 12.2009 SLE 88CF4000P EEPROM Technology * Very Fast Programming: * Write/erase time < 2,3 ms * Flash functionality with 4k sector flash and erase in one shot * EEPROM page programming: 1 to 128 Byte * Very High Endurance: * Min. 500,000 write/erase cycles per page * Max. 16,500,000 write/erase cycles per 4k sector * Data retention: min. 10 years @ 25C Security Features * * * * * * * * 32-bit Proprietary Instruction Set Memory and CPU Error Detection, Memory-, Bus- and SFR-Encryption DPA / SPA, DEMA / SEMA countermeasures incl. Dual Rail Logic Security Sensors (Voltage, frequency, Light, Temperature, Glitch) Active Shield True RNG according to AIS31 Memory Management and Protection Unit with Level Concept Chip ID, unique chip identification number for each chip Coprocessors and Peripherals * Hardware DES Accelerator for DES and Triple DES calculations * True Random Number Generator for true random number generation * Three 16-bit Autoreload Timers for protocol implementation, event monitoring Short Product Information 4/9 12.2009 SLE 88CF4000P Tools and Support * * * * Software Development Kit, SDK 88 Bondout based Emulator for real time debugging Flash samples for immediate test and validation, enabling short Time-to-Market Ready to use low level software drivers (Platform Support Layer) for peripherals, smartcard and cryptographic software: T=0, T=1, DES, AES,... * Worldwide application engineer team & customer dedicated Field Application Engineers. * Regular customer trainings on hardware & software tools, on-site trainings available on request. Document References * Hardware Reference Manual * Programmer's Reference Manual with complete set of application notes and program * * * * * examples Production and Personalization Manual for flash loading and production optimization Chip qualification report Chip delivery specification for wafer with chip-layout (die size, orientation, step size) Module specification containing description of package Module qualification report Electrical Characteristics * * * * * External clock frequency: 1 to 10 MHz Supply voltage range: 1.62 V to 5.5 V Temperature range: -25C to +85C ESD protection > 6 kV (HBM) Max. sleep mode current (typical) < 100 A in clock off mode Supported Standard * ISO/IEC 7816 * GSM 11.11, 11.12, 11.18 * ETSI TS 102 221 Short Product Information 5/9 12.2009 SLE 88CF4000P Ordering Information Package1 Type SLE 88CF4000P C Die (sawn, unsawn) SLE 88CF4000P MXXX M5.x Voltage Temperature Range Range 1.62 V - 5.5 V - 25C to + 85C Frequency Range (ext. clock frequency) MFCxxx 1 SLE 88CF4000P DSO20 DSO-20-2 SLE 88CF4000P VQFN10 VQFN-10-2 SLE 88CF4000P TSSOP20 TSSOP-20-4 1 MHz - 10 MHz available as flip chip module (MFC), wire-bonded module (M5) , die (C) for customer packaging Flash initialization/personalization available upon request. For ordering information please contact your Infineon local sales representative. Pin Description and Packaging lectrlectrical Characteristics Vcc M5.1 GND CLK RST I/O MFC5.6 SLE 88 CF4000P DSO-20 / TSSOP-20 Pin symbol Function Vcc Operating voltage RST Reset input CLK Processor clock input GND Ground I/O ISO7816-3 bi-directional data port Short Product Information 6/9 MFC5.8 VQFN-10 12.2009 SLE 88CF4000P General Description The SLE 88 products family is the Infineon's state of the art 32-bit platform, designed in cost optimized 130nm technology, with: * High Security level enabling secure multi-application and multitasking * High Performance for SIM/UICC applications with a fast internal frequency (33-66MHz) * High Quality EEPROM with 500,000 cycles programming endurance * High Flexibility with a freely configurable memory in code and data The SLE 88CXF4002P and this derivative were the first flash microcontrollers designed fully in 130nm, reaching the CC EAL5+ high certificate. It was rewarded by the Sesames Award of the "Best Hardware" at the Cartes 2006 exhibition. With its flash capability, it offers a decisive time-to-market advantage to card vendors and service providers in the launch of GSM/UICC applications. Technical Description DES Accelerator Sensors Filters Active Shield TRNG 32-bit Bus Scalable CLK Three 16-bit Timers Multistage 32-bit CPU Memory Management and Protection Unit Caches MED Intelligent Power Manager UART Short Product Information RAM EEPROM 7/9 12.2009 SLE 88CF4000P The SLE 88 Family fully meets the requirements for real multi-application operating systems. The advanced 0.13m technology, the Integral Security Concept, the low power optimised 32-bit core supported by various powerful peripherals, and the possibility to adapt the performance to application requirements establish the foundation for a completely new chip card generation. The High Performance is ensured by the 32-bit RISC architecture that processes instructions and data 32-bit wise supplied by 2 dedicated caches. A very efficient context/application switching mechanism allows fast switching between multiple tasks. An Integral Security Concept, based on the entire integration of security measures at each hardware and software design phase, has been used for the development of the SLE 88 Family. An Interrupt Control Unit supports a programmable interrupt system with UART, timers, and the other peripherals as interrupt sources. A variety of different Trap Vectors informs the operating system about exceptions (e.g. access violation). The architecture allows the Linear Addressing of Large Memories for a more convenient code implementation. The Memory Management and Protection Unit (MMU) handles a virtual address range of 4 Gbytes, and serves as a hardware firewall to enable secure separation of adjacent application codes and data. Program and data modules are organised as packages. Each package has a defined memory range of 16 Mbytes with dedicated access rights for memories and peripherals. With the 0.13m process, the SLE 88 Family offers large on-chip memories (ROM, EEPROM, RAM). The EEPROM space is the basis of Infineon Technologies "Flash" Concept where the entire EEPROM is freely configurable in code and data sections, and so can be used to store an Operating System, as well as application code and data. This customization provides added value to the system and the possibility to serve multiple projects with the same platform. This concept offers the flexibility and convenience of Flash memory, but takes advantage of the EEPROM cell quality (timing, cycling and endurance). A number of powerful peripherals offer hardware support for time and code intensive operations. : * DES Accelerator for symmetric crypto operations based on DES and Triple DES * True Random Number Generator (TRNG) to supply the CPU with true random numbers whose quality is tested according to AIS-31 strict evaluation guidelines * Intelligent Power Manager which automatically adjusts the internal frequency accordingly to the power classes A,B,C * Three 16-bit timers for protocol implementation, event monitoring, etc... Short Product Information 8/9 12.2009 SLE 88CF4000P Glossary AIS-31 Caches CRC CPU CMOS DES EC EEPROM ESD ETSI GSM HBM ISO/IEC MED MMU NVM OS PRNG RAM RISC ROM RSA T=0, T=1 TRNG UART UICC Functionality classes and evaluation methodology guidelines for physical random number generators defined by the German Institute for the Security of the Information Technology. Cache memories are fast RAM memories integrated into the CPU (faster access than external RAM) Cyclic Redundancy Check Central Processing Unit Complementary Metal-Oxide Semiconductor (technology used to manufacture most of today's chips) Data Encryption Standard Elliptic Curves Electrically Erasable Programmable Read-Only Memory (equivalent to NVM) Electrostatic Discharge, release of static electricity that can damage a chip European Telecommunication Standards Institute Global System for Mobile Communication Human Body Model International Organization for Standardization/International Electrotechnical Commission Memory Encryption Decryption unit Memory Management Unit Non Volatile Memory Operating System Pseudo Random Number Generator Random Access Memory Reduced Instruction Set Computer Read-Only Memory Rivest, Shamir and Adleman, inventors of the RSA cryptosystem Communication Protocols defined in ISO 7816 standard True Random Number Generator Universal Asynchronous Receiver/Transmitter Universal Integrated Circuit Card Sales code name SLE: IFX name S: Solitary Digital Circuits L: Free selectable E: Temperature range (-25C up to +85C) SLE 88 Chip Family: 66: 8-bit/16-bit 76: 16-bit 78: Dual 16-bit 88: 32-bit C: Controller C X: Crypto Controller ... X 400 Features: F: Flash product L: Contact-less interface U: USB interface N: SWP interface Ordinal number : e.g. : 0,2 0 .. EEPROM size: Add. Features 256: 256 kBytes 400: 400 kBytes 1M: 1MB 1M5: 1.5MB P: Plus For ordering information please contact your Infineon local sales representative Short Product Information 9/9 12.2009