MCU Extract is one of the most effective invasive extract technologies in the industry. And as the most critical tools for MCU extract is microprobing. There are five parts: microcopy, operation platform, component test kit, microcopy instrument and microprobe. Normally there will be over three to four different object lens to adjust the various amplifying times and focus when extract MCU. Microprobe can be used to capture and inject the signals of MCU. If connect to the oscillograph will have relative higher volume of capacitance and lower resistance. It will be unsuitable to detect the internal signals from MCU when extract it unless the detection being applied on the databus of MCU. Positive probe can connect to the soldering pads since it has more wider band width, lower capacitance and higher resistance. For most of the application, one micron preciseness platform is big enough.
In order to attain the content or security key from memorizer when extract MCU, microprobe should be placed on the databus. At the same time, it is difficult to observe the databus since there are various ways to conquer it. For example, the MCU extract and read operation need to be redo for several times, two to four microprobes should be used to observe the signals and constitute the databus waveform. It is more difficult to attain the information from smartcard when extract MCU, since their softwares won’t provide any interface for internal MCU memorizer as extracting purpose. For the sake of success, we will reuse part of the components from the processor of MCU such as address calculator or instructions decoder to visit all the memorizer units before extract MCU.
The programme counter will be added after each order cycle, and read the next address when extract MCU. It is quite suitable for programme scanning. What we need to do is prevent the processor operation switching, abstract or retreat, and won’t let these instructions mess up with programmer counter when MCU extract. minor modification on the order decode or programmer calculators will reach this effect. It is not a easy job, normally need to reverse engineering the MCU circuit before extract it. Which become more challenge for modern top layer network protection and dual logic design smartcard when extract MCU.