Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[cryptolib] entropy driver #14363

Open
1 of 8 tasks
moidx opened this issue Aug 18, 2022 · 3 comments
Open
1 of 8 tasks

[cryptolib] entropy driver #14363

moidx opened this issue Aug 18, 2022 · 3 comments
Assignees
@moidx
Labels
Earlgrey-PROD Triaged Temporary label to triage issues into Earlgrey-PROD Milestones SW:cryptolib Crypto library
Milestone
cryptolib

Comments

@moidx
Copy link
Contributor

moidx commented Aug 18, 2022
edited
Loading

The Entropy driver aims to provide the following services:

  • Interface to software csrng instance #14372
  • Interface to pre-conditioned entropy provided by the entropy_src
  • csrng KAT interface.
  • entropy_src pre-conditioner (SHA3-384) KAT interface.
  • [cryptolib] continuous mode config incl. health checks for entropy_src #14364
  • edn0 and edn1 helper routines to configure entropy for countermeasures and FIPS entropy source for otbn.
  • Health checks and error handling.
  • Health test configuration hardening (entropy_src), as those registers are not shadowed.

From a FIPS perspective, KAT tests will be required for algorithms within scope of potential certifications. It may be possible to implement such tests at a higher level of abstraction, but planning to add them along with the driver as optional libraries to drive basic functional test cases.
@moidx moidx added the SW:cryptolib Crypto library label Aug 18, 2022
@moidx moidx self-assigned this Aug 18, 2022
@tjaychen
Copy link

@moidx at one point we talked about needing additional software checks for some of the register healthtest configurations (since they are not shadowed). Should that be part of this issue also? Or not since it's not an explicit service?

@moidx moidx added this to the Project: M2 milestone Aug 18, 2022
@moidx
Copy link
Contributor Author

moidx commented Aug 18, 2022

Hi @tjaychen, yes, let me add it to the list. We are planning to use this driver as part of the cryptolib, which will cover ROM_EXT, manufacturing and other use cases.

Marking as M2 since I am planning to implement some system level tests with this driver.

@tjaychen
Copy link

thanks @moidx

@moidx moidx modified the milestones: Project: M2, Backlog Oct 27, 2022
@moidx moidx modified the milestones: Backlog, Project: M3 Nov 3, 2022
@msfschaffner msfschaffner added Earlgrey-PROD Candidate Temporary label to triage issues into Earlgrey-PROD Milestones Earlgrey-PROD Triaged Temporary label to triage issues into Earlgrey-PROD Milestones and removed Earlgrey-PROD Candidate Temporary label to triage issues into Earlgrey-PROD Milestones labels Oct 6, 2023
@msfschaffner msfschaffner modified the milestones: Discrete: M3, cryptolib Nov 8, 2023
This was referenced Mar 29, 2024
Closed
Closed
Closed
@vogelpi vogelpi mentioned this issue Jun 25, 2024
Closed
@vogelpi vogelpi mentioned this issue Jul 4, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@moidx moidx

Labels
Earlgrey-PROD Triaged Temporary label to triage issues into Earlgrey-PROD Milestones SW:cryptolib Crypto library
Projects
None yet
Milestone
cryptolib
Development

No branches or pull requests
3 participants
@tjaychen @moidx @msfschaffner