This is a step-by-step instruction to implement securely store and communication with aws-iot (mqtt) for ESP8266 and Microchip's ATECC508A chip.
We also develop a shield PCB board to easily connect ATECC508A with ESP8266 / ESP32 NodeMCU form factor and as in the Cesanta post[1], this combo is very inexpensive: the ATECC508A is less than $1, and ESP8266 is less than $2.
Figure 1: Circuit Schematic for ATECC508A[1]
| Function | ATECC508A pin | ESP8266 pin | NodeMCU pin | ATCRYPTOAUTH pin |
|---|---|---|---|---|
| SDA | 5 | 10 (GPIO12) | D6 | 11 (yellow) |
| SCL | 6 | 9 (GPIO14) | D5 | 12 (white) |
| GND | 4 | Any suitable GND | 19 (black) | |
| VCC | 8 | Any suitable 3V3 | 20 (red) |
Table 1: Wiring
Figure 2: NodeMCU pins
The ATECC508A crypto element[3] is the first crypto device to integrate ECDH (Elliptic Curve Diffie–Hellman) key agreement, which makes it easy to add confidentiality (encryption/decryption) to digital systems including Internet of Things (IoT) nodes used in home automation, industrial networking, accessory and consumable authentication, medical, mobile and other applications. In addition to ECDH, the ATECC508A has ECDSA sign-verify capabilities built-in to provide highly secure asymmetric authentication.
As we see the application of IoT technologies evolve, it is gratifying to witness the fact that security has become an intrinsic part of the implementation debate. Whilst there are plenty of hacks and vulnerabilities that are still capturing media attention, we have made significant ground in recent times with industry and government fighting back. Across the globe there have been healthy discussions around certification and regulatory controls in cyber security where IoT features prominently.[7]
Figure 3: Assembly
We understand that IoT is making a huge impact on our lives and give us a remarkable power, but with great power come great responsibilities 🕷.
Our goal makes it cheap and simple enough to make part of every project you'll develop, and we hope, in the near future, it'll embed with the microprocessor board.
- NODE MCU
- WeMos
- Any [D6, D5, GND, VCC] pins
| # | Activity | Status | Dead line |
|---|---|---|---|
| 1 | Prototyping | ✔️ | Dec-2017 |
| 2 | PCB design | ✔️ | Ago-2018 |
| 3 | Software development | 🔧 | Nov-2018 |
| 4 | Manufacturing | 🔧 | Nov-2018 |
| 5 | Unit tests (Eletrical and software) | 🗓 | TBD |
| 6 | Performance tests | 🗓 | TBD |
| 7 | Field tests | 🗓 | TBD |
| 8 | Initial release | 🗓 | TBD |
🗓 > 🔧 > ✔️ > 🎉
- Source: https://easyeda.com/adsantos/iot_sec
- The two-dollar secure IoT solution: Mongoose OS + ESP8266 + ATECC508 + AWS IoT
- Simple device control using MQTT
- Mongoose OS - IoT Firmware Development Framework
- ATECC508A
- AWS architect features Mongoose OS on ESP8266 and ECC508A at re:Invent 2016
- IoT Security Foundation
- Security By Choice
- AWS IoT Authentication Use Case
- EasyEDA