Issue 4, May 2005
NOVEMBER 2004
Introduction
Rodger Richey
Senior Applications Manager
This issue of the EMC Newsletter will focus on software
techniques to make your application more robust. Software
techniques do not preclude using any hardware solutions, but
should be used to enhance the hardware.
You have probably heard this before, but sometimes the best
defense is a good offense. With respect to EMC, what this means
is, the more proactive you are in designing EMC at the start of a
design, the better the results at the end will be. This is not only
true with hardware, but also with software.
Applications can have three basic responses to EMC. The first is
to continue operating as if nothing happened. The second is to
interrupt operation and then recover to a normal operating state.
The third response is to completely halt operation and not
recover. We all strive to achieve the first response. In most
cases, the second response is adequate depending on the type
of EMC event. The third however, is not acceptable. The
techniques presented in this issue may make the difference
between a complete system failure and one that recovers.
One feature that exists on all Microchip MCUs is a Watchdog
Timer or WDT. The WDT is an excellent peripheral to help
recover from EMC events. Its effectiveness, however, is directly
related to how it is used. It is very important to detect the type of
reset, and then properly put the microcontroller into a known
good state before executing any code.
When using a WDT in your application, you should analyze how
the WDT is enabled or disabled, what operations can be
performed on the WDT, and what is the timeout period, among
others. Understanding this operation will allow you to better use
the WDT to recover from EMC events.
Your feedback regarding this newsletter is welcomed and valued.
Please send any comments on this newsletter or prior issues, or
any ideas for future articles to: [email protected].
In This Issue
Software and Hardware Techniques for Reducing EEPROM
Memory Corruption ................................................................2
Fault Tolerant Software Techniques ......................................4
Power-up Detection ...............................................................6
Detection and Recovery ........................................................7
© 2005 Microchip Technology Inc.
Recommended Reading
EMC Techniques for Microprocessor Software
by D.R. Coulson, IEEE Colloquium on Electromagnetic Compat-
ibility of Software – 98/471, available for download from IEEE.org
for $35.00
This paper describes a simple strategy for making
microcontroller-based systems more robust through software
techniques. The author discusses an approach that considers
identifying the hazard, the risk to the application, the
vulnerabilities of the system, the failure mechanisms, and the
appropriate measures that can be taken to make the
application more robust.
Tips and Tricks
One of the best ways to help recover from EMC events when
using the Watchdog Timer (WDT) is to fill all unused memory
locations with a GOTO $ instruction.
This instruction can be used with the Microchip assembler and
tells the microcontroller to branch back to the same address. If
for some reason the microcontroller tries to execute
instructions in unused program memory locations, the GOTO $
instruction will create an infinite loop that does not clear the
WDT. The WDT will eventually expire and reset the
microcontroller. You can then use techniques discussed in
other articles of this issue to detect the reset and then put the
microcontroller into a known good state.
One useful assembler directive for the Microchip assembler to
automate filling memory with GOTO $ is the FILL command.
The format of the FILL command is: FILL expr, count,
where expr is the value you want to place in program memory
(it is typically enclosed in parenthesis as shown in the example
below), and count is the number of times you want the
expression repeated. The following example illustrates the use
of the FILL command for the PIC18F252 microcontroller.
#include p18f252.inc
org 0x12
failsafe goto $
org 0x100
fill (goto failsafe), (0x8000-$)/2
end
This example shows how the FILL command could be used to
fill from address 0x100 to the end of program memory. The
reason that the count parameter is divide by 2 is that the goto
failsafe instruction takes up two words of program memory.
If you are using a C compiler such as MPLAB® C18, you can
create an object file using the assembler and then link it into
your project. Use the MAP output of the linker to find the open
areas in your program memory, and then create the assembly
file to fill those gaps. You would normally use this procedure
once your code has been written and debugged.
1
EMC Newsletter
Software and Hardware Techniques for Reducing EEPROM Memory Corruption
Martin Bowman
Applications Engineer
This article offers some suggestions on how
nonvolatile EEPROM memory can be used in a
manner that will prevent data loss and corruption
through software and hardware techniques.
Quite often in embedded designs, nonvolatile
EEPROM memory is used to hold user, parameter, or
calibration data. To ensure reliable operation in
electrically noisy environments, there are a number of
points that need to be considered when selecting and
using EEPROM memory in your application. By
selecting your EEPROM memory carefully and
observing some basic hardware techniques, the
reliability of the nonvolatile memory in your system can
be greatly improved.
Choosing the correct bus between the microcontroller
and the memory will effect the level of hardware
protection available and also the complexity of
achieving a robust system. When we talk about the
level of hardware protection available, we are
generally referring to the protection mechanisms
incorporated in the bus command structure.
It is worth mentioning that the obvious choice for
nonvolatile memory is the internal data memory
available on many of the PICmicro® microcontrollers.
Although this internal memory is the easiest to use as
no external connections are required, this ease of use
often leads to common mistakes. The internal
EEPROM memory is generally immune to external
influences from the rest of the circuit; however, latch-
up may still cause data corruption if this happens to
occur during the data write.
Risk of device latch-up can be minimized by following
some of the circuit layouts that have been discussed in
previous issues of this newsletter. Software techniques
that can be applied to the internal data memory are
also applicable to external serial EEPROM memories.
The easiest software techniques to implement are as
follows:
• Enable the EEPROM memory only before a write
By enabling the EEPROM memory only when a
read or a write is to be performed will minimize the
chance of runaway software causing data
corruption. The same can be applied to external
memories. When using external memories, some
of the bus commands available will allow software
write protection of the data array. The exact
features available on each bus will be discussed
further in this article. While the majority of
nonvolatile memories support some form of
software controlled data protection, the same
technique can also be used with memories that
only have hardware protection. This is done by
controlling the write protection pin on the memory
at the expense of an I/O pin on the microcontroller.
2 © 2005 Microchip Technology Inc.
• Software verification of data
A simple data protection scheme that can be used
with no hardware penalty, is to perform data
verification. Once the data has been committed to
memory, there is often an indication that the data
write has completed. It is good programming
practice to verify the contents of the newly written
location in the EEPROM memory for applications
operating in noisy environments.
• Data redundancy
If your system will allow the additional expense of
a larger memory, then one technique that can be
used is to write the data into two separate loca-
tions. Many of the larger memories are partitioned
into separate pages and these pages often have
separate write protection. By writing the data into
two pages, software can be used to compare the
values, and if they are different, the software can
take the appropriate action. Taking this one stage
further and using two external devices will offer an
increase in data security with the protection that
given a potential latch-up condition, one of the
memories may be readable.
• Byte writes and page writes
In situations where a number of bytes are required
to be written, the obvious choice would be to per-
form a page write. The size of the page does
depend on the size and configuration of the exter-
nal memory. Most memories, when you perform a
page write, will erase the page beforehand and
then perform the write as a single operation. This
will give the fastest write time and the best
EEPROM memory performance; however, if the
write fails then you will have lost the entire page of
data. The alternative is to write the block of data in
individual bytes. This does increase the write time,
but in the event of a failure, at most, only a single
byte of data will be lost.
• How does this effect endurance?
The endurance of an EEPROM memory cell is
based on the number of erase write cycles at a
given temperature. The stress EEPROM memory
experiences when writing at elevated
temperatures or voltages will affect the
performance. Microchip offers the Total
Endurance™ software tool, which can be used to
calculate the endurance of Microchip serial
EEPROM memories. Total Endurance will enable
you to quantify these effects before implementing
them in software.

One point that is worth mentioning is that when any
connections are made from the microcontroller to the
external memory, techniques should be used to
minimize the chance of noise being picked up or
transmitted to the rest of the circuit.
The choice of bus between the microcontroller and the
external memory will also affect the overall robustness
of the system. The currently available bus
configurations are discussed below with comments on
the hardware features that are available.
• I2C™
The I2C bus is a two-wire (Clock – SCL and Data
– SDA) synchronous bidirectional bus. The basic
bus command and address structure offers some
limited read/write control. The command set that
any device will have when placed on the bus is
dictated by that device and is not part of the bus
structure. Many of the external I2C serial EEPROM
memories have commands to protect segments of
the memory array.
EMC Newsletter
Even with the best software and hardware protection
techniques, the possibility of latch-up of the external
memory remains. One of the simplest ways to get
around this is to drive the power for the memory from
one of the I/O pins of the microcontroller. Even the
largest external memory will only require 2 to 3 mA
when performing a write or an erase command. This is
well within the drive capability of the I/O pin and will
give the system the ability to perform a hard reset if
any problems are detected, or the memory fails to
respond to a command.
As with any choice made in the selection of the mem-
ory type and the bus configuration, there will always be
trade-offs between features offered, cost, and the
amount of hardware and software resource required to
design a reliable and noise immune system.
I hope that this article has given you some food for
thought on how a robust system can be developed
using nonvolatile memory, and how to counter
potential problems before they cause a system failure.

• SPI™
The SPI bus is a 4-wire (Clock, Data In, Data Out
and Chip Select) synchronous bus. The key fea-
tures of the SPI bus that allow for an improvement
in the reliability and robustness of a system from
the data point of view, are the Chip Select and also
the hardware write protection. The Chip Select pin
will enable the device to not respond to any bus
commands, which is an advantage in a system
with noise. Built into the SPI bus command struc-
ture is the Write Enable latch. Before data can be
written to a memory location, the device must be
write enabled. After the write has completed, this
bit is cleared in hardware and must be re-enabled
before subsequent write operations.
• Microwire
The Microwire bus shares many features with the
SPI bus. The main exception is the software write
enable feature. With Microwire, this bit once
enabled, remains enabled until changed under
software control.

© 2005 Microchip Technology Inc. 3

EMC Newsletter
Fault Tolerant Software Techniques
Joseph Julicher
Principal Applications Engineer
There are many applications that place a
microcontroller into a very harsh environment. Some
of these environments can cause electrical transients
inside the microcontroller. One example is outer
space where the presence of ionizing radiation can
create some very challenging problems. Another
harsh environment is in low cost appliances where
cost savings measures can change an otherwise
benign environment into one with very harsh
electromagnetic transients. The problems seen in
these environments usually manifest themselves as
randomly flipped bits inside the microcontroller.
Managing the environmentally induced faults falls into
the responsibility of the design engineer. For
terrestrial applications, the solution can usually be
resolved by adjustments to the circuit or shielding.
However, this is not always possible, so this article
discusses how software may be able to mitigate the
effects of these soft errors.
Inside a microcontroller there are many registers that
affect the function of the controller or the software.
Special function registers typically affect how the con-
troller will behave, while RAM locations are used to
store variables affecting the behavior of the software.
What is the affect on the application when one of these
registers changes in value? The following table shows
possible results from a few of the registers:
Program Counter Code flow will jump randomly.
Status Register Banking, math, and decision
errors.
Interrupt status Random interrupts created,
masked or unmasked.
I/O Direction Inputs become outputs or outputs
Registers become inputs.
Stack Pointer or Functions and interrupts generate
Stack memory random return addresses.
This table does not show a comprehensive list of
errors or results, but it should provide an idea on the
possible severity of the problem.
Most of these problems can be detected, or corrected
by careful attention to detail in the software design.
However, we must remember that even for the
problems we cannot correct, we must still assure fail-
safe operation.
Note: Fail-safe is a term used to describe a sys-
tem where any failure will result in an out-
put that is safe. A failure in a saw must
leave the blade stopped for the system to
be termed fail-safe.
4 © 2005 Microchip Technology Inc.
One of the most difficult to handle errors is a random
change to the program counter. Here are a few ways to
deal with this problem.
1. Make critical code as small as possible to
minimize the chances of random entry.
2. Place infinite loops around critical sections to
catch runaway code before it enters the critical
area.
3. Do not locate critical tasks or data near the
beginning or ending of memory.
4. Use “passkeys” located throughout RAM to
enable a critical section. Clear the “passkeys”
after use.
5. Break up critical operations into smaller discrete
tasks and scatter them around memory.
6. Leave a trail of completed steps in the RAM.
Before starting any task, verify that the previous
steps are complete by looking at the trail. If the
program counter is corrupted, you will detect this
by seeing missing steps.
7. Fill unused program memory with a jump to a
code trap. The trap can be used to reset by
jumping to the start of memory, by waiting for the
Watchdog Timer, or even by triggering an
external device to power cycle the controller.
One common problem is errors with the I/O registers. If
a bit flips in a PORT register, an output will suddenly
change. One solution is to keep RAM copies of all the
special function registers. The registers can be
updated with the correct values from RAM in a tightly
controlled area of code. Registers that are set and
never changed, should be refreshed from program
memory while the other registers are refreshed from
RAM.
It is possible to corrupt any place in memory, so care
should be taken to ensure that the values are correct.
Fortunately, it is a simple matter to use software
checksums or parity to verify that the data in RAM is
correct.
State machines can be kept in good health by creating
a table of valid to/from states. If a state machine is
leaving state A and entering state C, a quick check of
the table can make sure that A->C is a valid combina-
tion. If that state is invalid, it is time to reset or go to our
code trap.
A stack failure will look exactly like a random program
counter upset. Adding the code for program counter
upsets will solve a few problems.

Errors in the program memory come in two flavors.
The first is a simple misfetch of data. The program
memory is still correct and intact, but the read latches
or the data bus was disturbed. The second is a
sufficiently strong upset that corrupts the contents of
memory. This most typically happens when the
application is able to write to the program memory.
There are a few ways to guard against these events.
1. DO NOT write to program memory. DO NOT
leave program memory write functions in the
code space. A random program counter upset
could cause a program memory write.
2. If you must write to program memory, take care
to ensure that the write in progress is correctly
entered and the data is valid.
3. Place critical functions into the program memory
in two different locations or memory banks.
Execute the same data on both functions and
verify that the identical results are created.
4. Execute all critical functions twice with the same
code or twice with different code and require
identical responses before using the results.
5. Create a functional self-check of all functions in
the code by using known test data as inputs and
looking for precalculated test results as returned
data.
6. Periodically checksum the program memory to
ensure the contents are valid. Some processors
do not have this capability so look at techniques
3, 4, or 5 as a practical alternative.
© 2005 Microchip Technology Inc.
EMC Newsletter
If you have the luxury of adding a second processor,
then you can use it to check on the health of the first
processor. With only two processors, you will not be
implementing a full voting redundant system, but you
can easily create a system termed a self-checking pair.
In a self-checking pair, each processor knows enough
about the other processor’s activities to verify that the
activities are being performed correctly. This can be a
simple matter of exchanging state variables and using
the valid state tables, or it can be as complex as
looking at the outputs on the I/O pins and verifying that
they are behaving correctly.
A triple-processor voting system is often considered
the ultimate in fault tolerance. In reality, these systems
are very difficult to build with standard microcontrollers
because of I/O signal steering. If any CPU can fail and
the other CPUs must seamlessly take over the I/O
functions, a large responsibility falls to the I/O
switching logic. For simple low speed I/Os there is no
issue, but for data busses or other high performance
signals, the failover process can become very
complex. Before specifying such a system, spend
some time considering how the failover process will
work. And remember that once a processor has failed,
the system must resort to a self-checking pair while the
failed processor restarts and recovers.
Fault tolerant software practices begin by changing the
engineering mind-set to include the possibility of
failures inside the microcontroller. Fault tolerance is a
process that begins early in the design with methods
that are often unique to a specific application. I hope
that armed with the basic information presented in this
paper, you will be better able to design robust and
reliable systems regardless of the harsh places the
system must operate.
5
EMC Newsletter
Power-up Detection
John Charais
Applications Engineer

When using a microcontroller in an Electrical Fast
Transients (EFT) rich environment, the hardware is
typically designed to handle an EFT event of a
particular magnitude. Dependant upon what the
hardware is designed to handle, there is always the
possibility of an EFT event happening that exceeds
this limit. What happens when an event like this
occurs, and is there anything we can do to help protect
the system’s integrity? The answers are, we don’t
always know what is going to happen, but there are
ways to protect the system through the use of software
and some of the microcontroller’s peripherals.
Some of the possible errors that may occur due to an
EFT event are: RAM corruption, an error with the
program counter causing an unwanted jump in the
code, randomized interrupt, or a reset of the
microcontroller, just to name a few. Special care must
be taken when designing the system to deal with these
types of situations. In this article, we will look
specifically at the Reset condition and how to properly
identify what type of reset has occurred.
be updated. Having a bit flipped due to an EFT event
can be difficult to detect, but it takes the least amount
of EFT energy to accomplish. By using the BOR and
the WDT, we can help protect against this. The more
severe EFT events will cause either a MCLR reset (by
inducing a voltage on the MCLR pin) or a POR reset.
By monitoring how many reset events happen and
what type of reset occurs, you can gauge the strength
of the EFT environment and make the decision
whether or not additional hardware protection is
needed.
To determine which type of reset has occurred, there
are a few bits that need to be monitored which are spe-
cific to each microcontroller. In the case of most base-
line parts, there are two bits that need to be monitored
from the STATUS register: TO and PD. The following
table shows the condition of these pins with respect to
a particular reset where ‘u’ indicates no change on the
pin.
Condition TO PD

Determining what type of reset that has occurred can Power-on Reset 1 1
be advantageous to the designer. After knowing what MCLR Wake-up 1 0
type of reset has occurred, the software can be written (from Sleep)
for the appropriate event. Anyone who is accustomed WDT Reset 0 1
to programming with our baseline parts is probably (normal operation)
already familiar with this practice. Since the baseline
parts don’t have an interrupt vector, any time the part WDT Wake-up 0 0
comes out of Sleep it will go through the reset vector. (from Sleep)
In a typical low-power application, the baseline part will MCLR Reset u u
be put to Sleep and will wait for an external event to (normal operation)
bring the part out of Sleep, such as a wake-on-change With our mid-range parts, we will also have to take into
on an I/O pin, a Watchdog time-out, or for the consideration the POR and BOR bits in the PCON reg-
PIC10F200 series, a wake-on-change on the compar- ister. Depending on how these bits are set, we can
ator. Each one of these examples could have different determine what caused the device to reset.
code to execute based on what brought the part out of
Sleep. Condition POR BOD TO PD
The same technique can be used to help protect the Power-on Reset 0 u 1 1
system’s integrity from an EFT event. The peripherals Brown-out Detect 1 0 1 1
that will help us do this are:
WDT Reset u u 0 u
• Watchdog Timer (WDT)
WDT Wake-up u u 0 0
• Brown-out Reset (BOR)
• Power-on Reset (POR) MCLR Reset u u 1 0
• Master Clear (MCLR) (during Sleep)

The WDT can be used to help determine if the pro-
gram counter was corrupted. This can be done by fill-
ing up the unused portions of your program space with
infinite loops. If one of these loops is executed due to
an error with the program counter, the code will stay in
the loop until a WDT time-out occurs. The BOR can be
used to help detect possible RAM corruption. When a
BOR is detected, a parity check of the RAM can be
done to see if there is corruption, or the RAM can just
MCLR Reset u u u u
(normal operation)
These bits must be checked at the start of your pro-
gram before any instruction is preformed that could
affect the status of these bits. By only monitoring these
bits alone, you still cannot ensure that your system
hasn’t been compromised. Rather, by monitoring these
bits, you are adding an additional layer of protection to
your system at no hardware cost to the design.

6 © 2005 Microchip Technology Inc.


Detection and Recovery
Gaurang Kavaiya
Microcontroller Group Systems Manager
The most important requirement for any defensive
software technique is to search (detect) the failing
mechanism. Once the failing mechanism is detected, it
may be easier to rescue (recover) the system.
One of the easiest failing modes to detect is a Reset. If
the code jumps to a reset vector, it’s usually an
indication of a Reset. Microchip’s PICmicro® devices
provide various status bits to easily identify the type of
reset. The article, “Power-up Detection” in this issue,
explains the reset source identification in detail.
On the other hand, it’s much tougher to detect a RAM
fail bit. In simplest terms, the RAM bit is a flip-flop. If a
noise event flips the state of one of the bits in this flip-
flop, you may end up with a RAM bit corruption issue.
One way to detect RAM bit corruption, is to put a
known data pattern in one of the RAM locations and
check for the corruption. Typically, most devices have
hundreds of bytes or a few Kbytes of RAM. The pattern
in one RAM location may not be enough to detect a
potential corruption issue within the entire RAM.
Depending on the RAM size, you need to use more
than one RAM location for pattern storage and match
checking. Depending on the RAM size, you need to
reserve a few bytes of RAM space for matching. The
more locations you reserve, the better the chances of
catching the issue, but at a higher resource cost. I also
recommend that you reserve a couple of bytes of RAM
per memory bank for pattern storage.
Once RAM corruption has been detected, there are
multiple ways to recover. Most of them involve some
kind of reinitialization. If your code has a function that
initializes all usable RAM variables and SFRs, then it
should call that function and start over. Another way to
recover is do some kind of controlled Reset (RESET
instruction or WDT timeout). This may put most SFRs
in a known state. However, it is recommended that you
refer to the PICmicro device data sheet for the SFR
values in the case of such a reset. Many applications
tend to initialize RAM variables at Reset. This
technique is popularly known as reset-based recovery.
If you have any critical variables whose corruption can
have a huge impact on software (i.e., current state
information for state machine-based logic), then
maintain more than one copy of the same variable in
different memory banks. Then, prior to performing an
operation, match the value of both locations. If they do
not match, it’s an indication of corruption, and you will
need to take recovery actions. The software needs to
have a recovery plan, such as what to do if things go
wrong, and what is the best way to recover.
© 2005 Microchip Technology Inc.
EMC Newsletter
One possible fail mechanism is port I/O corruption.
You can maintain another copy of I/O status in RAM
and compare them to detect corruption. A PICmicro
device has the capability to read its pin regardless of
its definition as an input or output. This feature helps
when comparing the value of the current output with
the intended output. Another option is to assume that
an I/O will become corrupted and restore the value
quickly. In this approach, port I/Os are refreshed at
regular intervals. This can be done by executing a
refresh once in a main routine or on some fixed timer
event.
Another less frequent failure related to an EMC event
is runaway code. If the program counter gets
corrupted, the device may jump to an unwanted
location. Typically, you need a very serious EMC event
for this to happen. If all of the unused locations are
filled with a goto $ instruction, the device will become
stuck in an endless loop in the event that runaway
code occurs. The Watchdog Timer can be used to
safely recover from this state.
Another way to detect code misexecution is to use
token passing or a subroutine counter. This is mainly
used with safety-critical systems where you must
ensure proper flow of a critical program, as failure to
do so may have serious consequences. In the simplest
implementation, successful execution of each
subroutine will add a certain value to a variable. If any
subroutine is not executed due to code misexecution,
then the subroutine counter will contain a different
value. This will help in detecting code misexecution.
We’ve discussed some ways to detect typical failing
modes and ways to recover. More error correction
methods and detection logic exist that offer a variety of
options. For example, Cyclic Redundancy Check
(CRC) logic on program/data memory can be used to
check errors. Some modified CRC logic exists that
allows one or multiple bit error correction capability.
Most error correction logic relies on some redundant
data storage. Therefore, it may result in additional
resource requirements.
Finally, a designer needs to analyze all options (both
hardware and software) to find the optimum solution
for their system.
7
EMC Newsletter
NOTES:

8 © 2005 Microchip Technology Inc.

List of Issues
ISSUE 4, MAY 2005
• Software and Hardware Techniques for Reducing EEPROM Memory Corruption
• Fault Tolerant Software Techniques
• Power-up Detection
• Detection and Recovery

ISSUE 3, MARCH 2005

• Know Your Transient Suppression Device
• Fixing Transients is Easy
• Managing Your Lifeline
• Interfacing to the Real World
• Low Cost Method to Improve EFT Performance

ISSUE 2, JANUARY 2005

• The Importance of Capacitance
• PCB Layout Fundamentals
• The Art or Science of Component Placement
• Every Loop is an Antenna, Like It or Not
• Ground Planning Case Study
• PCB Design Techniques for High-speed Digital Systems

ISSUE 1, NOVEMBER 2004

• What is EMC?
• What is ESD?
• What is EFT?
• What is Latch-up?

Information contained in this publication regarding device Trademarks

applications and the like is provided only for your convenience
and may be superseded by updates. It is your responsibility to
ensure that your application meets with your specifications.
MICROCHIP MAKES NO REPRESENTATIONS OR WAR-
RANTIES OF ANY KIND WHETHER EXPRESS OR IMPLIED,
WRITTEN OR ORAL, STATUTORY OR OTHERWISE,
RELATED TO THE INFORMATION, INCLUDING BUT NOT
LIMITED TO ITS CONDITION, QUALITY, PERFORMANCE,
MERCHANTABILITY OR FITNESS FOR PURPOSE.
Microchip disclaims all liability arising from this information and
its use. Use of Microchip’s products as critical components in
life support systems is not authorized except with express
written approval by Microchip. No licenses are conveyed,
implicitly or otherwise, under any Microchip intellectual property
rights.
The Microchip name and logo, the Microchip logo, Accuron,
dsPIC, KEELOQ, microID, MPLAB, PIC, PICmicro, PICSTART,
PRO MATE, PowerSmart, rfPIC, and SmartShunt are
registered trademarks of Microchip Technology Incorporated
in the U.S.A. and other countries.
AmpLab, FilterLab, Migratable Memory, MXDEV, MXLAB,
PICMASTER, SEEVAL, SmartSensor and The Embedded
Control Solutions Company are registered trademarks of
Microchip Technology Incorporated in the U.S.A.
Analog-for-the-Digital Age, Application Maestro, dsPICDEM,
dsPICDEM.net, dsPICworks, ECAN, ECONOMONITOR,
FanSense, FlexROM, fuzzyLAB, In-Circuit Serial
Programming, ICSP, ICEPIC, Linear Active Thermistor,
MPASM, MPLIB, MPLINK, MPSIM, PICkit, PICDEM,
PICDEM.net, PICLAB, PICtail, PowerCal, PowerInfo,
PowerMate, PowerTool, rfLAB, rfPICDEM, Select Mode,
Smart Serial, SmartTel, Total Endurance and WiperLock are
trademarks of Microchip Technology Incorporated in the
U.S.A. and other countries.
SQTP is a service mark of Microchip Technology Incorporated
in the U.S.A.
All other trademarks mentioned herein are property of their
respective companies.
© 2005, Microchip Technology Incorporated, Printed in the
U.S.A., All Rights Reserved.

© 2005 Microchip Technology Inc. 9


AMERICAS
Corporate Office
2355 West Chandler Blvd.
Chandler, AZ 85224-6199
Tel: 480-792-7200
Fax: 480-792-7277
Technical Support:
http://support.microchip.com
Web Address:
www.microchip.com
Atlanta
Alpharetta, GA
Tel: 770-640-0034
Fax: 770-640-0307
Boston
Westborough, MA
Tel: 774-760-0087
Fax: 774-760-0088
Chicago
Itasca, IL
Tel: 630-285-0071
Fax: 630-285-0075
Dallas
Addison, TX
Tel: 972-818-7423
Fax: 972-818-2924
Detroit
Farmington Hills, MI
Tel: 248-538-2250
Fax: 248-538-2260
Kokomo
Kokomo, IN
Tel: 765-864-8360
Fax: 765-864-8387
Los Angeles
Mission Viejo, CA
Tel: 949-462-9523
Fax: 949-462-9608
San Jose
Mountain View, CA
Tel: 650-215-1444
Fax: 650-961-0286
Toronto
Mississauga, Ontario,
Canada
Tel: 905-673-0699
Fax: 905-673-6509
page 10
Worldwide Sales and Service
ASIA/PACIFIC ASIA/PACIFIC EUROPE
Australia - Sydney India - Bangalore Austria - Weis
Tel: 61-2-9868-6733 Tel: 91-80-2229-0061 Tel: 43-7242-2244-399
Fax: 61-2-9868-6755 Fax: 91-80-2229-0062 Fax: 43-7242-2244-393
China - Beijing Denmark - Ballerup
India - New Delhi
Tel: 86-10-8528-2100 Tel: 45-4450-2828
Tel: 91-11-5160-8631
Fax: 86-10-8528-2104 Fax: 45-4485-2829
Fax: 91-11-5160-8632
China - Chengdu Japan - Kanagawa France - Massy
Tel: 86-28-8676-6200 Tel: 81-45-471- 6166 Tel: 33-1-69-53-63-20
Fax: 86-28-8676-6599 Fax: 81-45-471-6122 Fax: 33-1-69-30-90-79
China - Fuzhou Korea - Seoul Germany - Ismaning
Tel: 86-591-8750-3506 Tel: 82-2-554-7200 Tel: 49-89-627-144-0
Fax: 86-591-8750-3521 Fax: 82-2-558-5932 or Fax: 49-89-627-144-44
China - Hong Kong SAR 82-2-558-5934 Italy - Milan
Tel: 852-2401-1200 Malaysia - Penang Tel: 39-0331-742611
Fax: 852-2401-3431 Fax: 39-0331-466781
Tel:011-604-646-8870
China - Shanghai Fax:011-604-646-5086 Netherlands - Drunen
Tel: 86-21-5407-5533 Tel: 31-416-690399
Philippines - Manila
Fax: 86-21-5407-5066 Fax: 31-416-690340
Tel: 011-632-634-9065
China - Shenyang Fax: 011-632-634-9069 England - Berkshire
Tel: 86-24-2334-2829 Tel: 44-118-921-5869
Singapore
Fax: 86-24-2334-2393 Fax: 44-118-921-5820
Tel: 65-6334-8870
China - Shenzhen Fax: 65-6334-8850
Tel: 86-755-8203-2660
Taiwan - Kaohsiung
Fax: 86-755-8203-1760 Tel: 886-7-536-4818
China - Shunde Fax: 886-7-536-4803
Tel: 86-757-2839-5507
Taiwan - Taipei
Fax: 86-757-2839-5571 Tel: 886-2-2500-6610
China - Qingdao Fax: 886-2-2508-0102
Tel: 86-532-502-7355 Taiwan - Hsinchu
Fax: 86-532-502-7205 Tel: 886-3-572-9526
Fax: 886-3-572-6459
04/20/05
© 2005 Microchip Technology Inc.