FAQs
English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

Using the Security Engine for CRC generation

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED
Jump to solution

Using the Security Engine for CRC generation

Jump to solution
‎03-10-2025 02:32 PM
452 Views
rhaas
Contributor IV

I am using the LS1028A processor in a new project. We need to generate/validate CRCs very quickly. I have seen that the security engine (SEC) can be used to do this.

My concern is that we will be supporting customers that require encryption to be disabled because to US export laws. The part number of the processor specifies if encryption is enabled or disabled.

Would we be able to use the SEC to generate/validate CRCs on processor's with encryption turned off?

Tags (1)
0 Kudos
Reply
1 Solution

Jump to solution
‎03-14-2025 09:52 AM
411 Views
ran_tang
NXP Employee
NXP Employee

Hi Raymond,

 

By saying encryption enabled and disable, which of the following cases are you referring to?

 

1. "E" part and "non-E" part

ran_tang_0-1741970151838.png

 

2. "E" part with crypto acceleration disabled via register SFP_OSPR0[NSEC] bit.

ran_tang_1-1741970601137.png

ran_tang_2-1741970677462.png

 

For case #1, it is not possible to use SEC on a "non-E" part, as SEC is completely power gated on such parts.

For case #2, you can enable and disable SEC with OEM Security Policy Register 0 (SFP_OSPR0) for export control, if you are using "E" part.

 

Thanks,

Ran

 

View solution in original post

0 Kudos
Reply
4 Replies

Jump to solution
‎03-16-2025 12:38 PM
359 Views
StarryKnight04
Contributor I

It seems that the NXP community forum discusses using the Security Engine for CRC generation in the Layerscape platform, which involves secure data handling and encryption processes. Exploring the security capabilities of such systems could offer valuable insights into optimizing data integrity and verification processes, particularly in sensitive applications. If you're diving into this area, there could be a variety of best practices and implementation considerations worth exploring further.

0 Kudos
Reply

Jump to solution
‎03-14-2025 09:52 AM
412 Views
ran_tang
NXP Employee
NXP Employee

Hi Raymond,

 

By saying encryption enabled and disable, which of the following cases are you referring to?

 

1. "E" part and "non-E" part

ran_tang_0-1741970151838.png

 

2. "E" part with crypto acceleration disabled via register SFP_OSPR0[NSEC] bit.

ran_tang_1-1741970601137.png

ran_tang_2-1741970677462.png

 

For case #1, it is not possible to use SEC on a "non-E" part, as SEC is completely power gated on such parts.

For case #2, you can enable and disable SEC with OEM Security Policy Register 0 (SFP_OSPR0) for export control, if you are using "E" part.

 

Thanks,

Ran

 

0 Kudos
Reply

Jump to solution
‎03-16-2025 08:26 AM
373 Views
rhaas
Contributor IV
We are concerned with export control, so bullet 2 is the applicable scenario.

So we are able to render the part exportable and retain the CRC engine by burning a fuse. This is good news.

Which document has the register definition of SFP_OSPR0? I can't seem to find it.

Thank you
0 Kudos
Reply

Jump to solution
‎03-16-2025 07:35 PM
340 Views
ran_tang
NXP Employee
NXP Employee

Hi Raymond,

 

I will share the TAUG document with you in a separate email.

 

Thanks,

Ran

0 Kudos
Reply