帮助
英语(美国) | English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

Using the Security Engine for CRC generation

取消
开启建议
自动建议可通过在您键入时建议可能的匹配,而快速缩小您的搜索结果范围。
显示结果 
显示  仅  | 搜索替代 
您的意思是: 
已解决
跳至解决方案

Using the Security Engine for CRC generation

跳至解决方案
‎03-10-2025 02:32 PM
891 次查看
rhaas
Contributor IV

I am using the LS1028A processor in a new project. We need to generate/validate CRCs very quickly. I have seen that the security engine (SEC) can be used to do this.

My concern is that we will be supporting customers that require encryption to be disabled because to US export laws. The part number of the processor specifies if encryption is enabled or disabled.

Would we be able to use the SEC to generate/validate CRCs on processor's with encryption turned off?

标记 (1)
0 项奖励
回复
1 解答

跳至解决方案
‎03-14-2025 09:52 AM
850 次查看
ran_tang
NXP Employee
NXP Employee

Hi Raymond,

 

By saying encryption enabled and disable, which of the following cases are you referring to?

 

1. "E" part and "non-E" part

ran_tang_0-1741970151838.png

 

2. "E" part with crypto acceleration disabled via register SFP_OSPR0[NSEC] bit.

ran_tang_1-1741970601137.png

ran_tang_2-1741970677462.png

 

For case #1, it is not possible to use SEC on a "non-E" part, as SEC is completely power gated on such parts.

For case #2, you can enable and disable SEC with OEM Security Policy Register 0 (SFP_OSPR0) for export control, if you are using "E" part.

 

Thanks,

Ran

 

在原帖中查看解决方案

0 项奖励
回复
4 回复数

跳至解决方案
‎03-16-2025 12:38 PM
798 次查看
StarryKnight04
Contributor I

It seems that the NXP community forum discusses using the Security Engine for CRC generation in the Layerscape platform, which involves secure data handling and encryption processes. Exploring the security capabilities of such systems could offer valuable insights into optimizing data integrity and verification processes, particularly in sensitive applications. If you're diving into this area, there could be a variety of best practices and implementation considerations worth exploring further.

0 项奖励
回复

跳至解决方案
‎03-14-2025 09:52 AM
851 次查看
ran_tang
NXP Employee
NXP Employee

Hi Raymond,

 

By saying encryption enabled and disable, which of the following cases are you referring to?

 

1. "E" part and "non-E" part

ran_tang_0-1741970151838.png

 

2. "E" part with crypto acceleration disabled via register SFP_OSPR0[NSEC] bit.

ran_tang_1-1741970601137.png

ran_tang_2-1741970677462.png

 

For case #1, it is not possible to use SEC on a "non-E" part, as SEC is completely power gated on such parts.

For case #2, you can enable and disable SEC with OEM Security Policy Register 0 (SFP_OSPR0) for export control, if you are using "E" part.

 

Thanks,

Ran

 

0 项奖励
回复

跳至解决方案
‎03-16-2025 08:26 AM
812 次查看
rhaas
Contributor IV
We are concerned with export control, so bullet 2 is the applicable scenario.

So we are able to render the part exportable and retain the CRC engine by burning a fuse. This is good news.

Which document has the register definition of SFP_OSPR0? I can't seem to find it.

Thank you
0 项奖励
回复

跳至解决方案
‎03-16-2025 07:35 PM
779 次查看
ran_tang
NXP Employee
NXP Employee

Hi Raymond,

 

I will share the TAUG document with you in a separate email.

 

Thanks,

Ran

0 项奖励
回复