Cryptographic Library for STM32 MCUs gains US Security Standards certification

July 14, 2016 // By Graham Prophet
STMicroelectronics has successfully certified its cryptographic library for STM32 microcontrollers according to the US Cryptographic Algorithm Validation Program (CAVP), helping users prove the security of their new products quickly and cost-effectively.

An extension to the STM32Cube software package, the X-CUBE-CRYPTOLIB library is ready for use in security-conscious STM32-based applications including Internet-of-Things (IoT) devices, point-of-sale terminals, smart meters, access-control systems, and fingerprint modules. CAVP certification removes the burden of algorithm validation and allows OEMs seeking the US Federal Information Processing Standard ( FIPS) approval to submit their products directly for security testing.

 

The STM32 cryptographic library includes all the major security algorithms for encryption, hashing, message authentication, and digital signing, enabling developers to satisfy application requirements for any combination of data integrity, confidentiality, identification/authentication, and non-repudiation. The library includes firmware as well as hardware-acceleration functions for some STM32 families.

 

There are examples for each algorithm and template projects for popular development tools including Keil MDK-ARM , IAR Embedded Workbench EWARM and, GCC-based IDEs such as Ac6 SW4STM32 and Atollic TrueSTUDIO .

 

The approved algorithms are AES (validation number 3971), RSA (2036), ECDSA (874), SHS (3275), DRBG (1165) and HMAC (2589). Full details are available online at the NIST CSRC Algorithm Validation Lists web page . X-CUBE-CRYPTOLIB contains many further algorithms, including DES, TripleDES, MD5, ECC with key generation, ChaCha20, Poly1305, Curve25519 and others.

 

The X-CUBE-CRYPTOLIB for STM32 is available free of charge under the terms of ST’s Software License Agreement (SLA0048).

 

ST; www.st.com/x-cube-cryptolib