Oddbean new post about | logout
 Correct Atecc's are IoT SE's which is a much lower risk than wallets. If you break an IoT SE your could end up controlling your neighbor's AC. If you break a wallet SE that could be $10,000 worth of currency.

I wonder what sorts of SE's credit cards use. 
 Look at:
- ST32 from STmicro
- TEGRION series from Infineon
- SmartMX3 from NXP

The SE050 is just a configuration of the P71D321 in a chip form factor with JCOP and an applet 
 Thanks. Sorry these are what credit cards use? Or recommend for wallet use? They have a better track record than Atecc?

ST32 means STM32 I assume?

Funny because as opposed to dedicated secure elements these are general purpose programmable microcontrollers with cryptography just one of the features they offer. You even have to BYO cryptographic library in the case of STM32. intuitively, that would make them more vulnerable? Larger attack surface?

SmartMX3 and Tegrion say "EMV payments" on their product page that sounds promising. This application has had much broader and longer exposure than e.g. Yubikeys/FIDO so if they have stood that test of time then that speaks for them.

I've been looking into SE050 as Atecc replacements might look into them further against this background. I'm still unhappy with the state of open source FIDO keys (too expensive/too complicated). 
 No, the ST32s are different even though similarly named

https://www.st.com/en/secure-mcus/st32-arm-core.html 
 Ooooh. TIL.

I like how it says SIM.