- Forums
- Product Forums
- General Purpose MicrocontrollersGeneral Purpose Microcontrollers
- i.MX Forumsi.MX Forums
- QorIQ Processing PlatformsQorIQ Processing Platforms
- Identification and SecurityIdentification and Security
- Power ManagementPower Management
- Wireless ConnectivityWireless Connectivity
- RFID / NFCRFID / NFC
- Advanced AnalogAdvanced Analog
- Neural Processing UnitsNeural Processing Units
- MCX Microcontrollers
- S32G
- S32K
- S32V
- MPC5xxx
- Other NXP Products
- S12 / MagniV Microcontrollers
- Powertrain and Electrification Analog Drivers
- Sensors
- Vybrid Processors
- Digital Signal Controllers
- 8-bit Microcontrollers
- ColdFire/68K Microcontrollers and Processors
- PowerQUICC Processors
- OSBDM and TBDML
- S32M
- S32Z/E
-
- Solution Forums
- Software Forums
- MCUXpresso Software and ToolsMCUXpresso Software and Tools
- CodeWarriorCodeWarrior
- MQX Software SolutionsMQX Software Solutions
- Model-Based Design Toolbox (MBDT)Model-Based Design Toolbox (MBDT)
- FreeMASTER
- eIQ Machine Learning Software
- Embedded Software and Tools Clinic
- S32 SDK
- S32 Design Studio
- GUI Guider
- Zephyr Project
- Voice Technology
- Application Software Packs
- Secure Provisioning SDK (SPSDK)
- Processor Expert Software
- Generative AI & LLMs
-
- Topics
- Mobile Robotics - Drones and RoversMobile Robotics - Drones and Rovers
- NXP Training ContentNXP Training Content
- University ProgramsUniversity Programs
- Rapid IoT
- NXP Designs
- SafeAssure-Community
- OSS Security & Maintenance
- Using Our Community
-
- Cloud Lab Forums
-
- Knowledge Bases
- ARM Microcontrollers
- i.MX Processors
- Identification and Security
- Model-Based Design Toolbox (MBDT)
- QorIQ Processing Platforms
- S32 Automotive Processing Platform
- Wireless Connectivity
- CodeWarrior
- MCUXpresso Suite of Software and Tools
- MQX Software Solutions
- RFID / NFC
- Advanced Analog
- Neural Processing Units
-
- NXP Tech Blogs
- Home
- :
- Translated Content
- :
- Multi Source Translation Content
- :
- 2383928_en-US
2383928_en-US
2383928_en-US
2383928_en-US
Hello,
I am currently evaluating the SE051 using the ssscli tool from the Plug & Trust Middleware.
My goal is to perform AES encryption and decryption operations using modes such as CBC, ECB, and ideally AEAD modes like GCM or CCM.
While looking at the provided Python source code for ssscli, I noticed the following:
- In const.py, the CRYPT_ALGO dictionary only defines AES_CTR.
- In cli.py, the help text for the encrypt and decrypt commands only mentions --algo oaep and --algo rsaes.
Since I am planning to use this in a commercial product, I would like to avoid modifying the NXP-provided source code (such as const.py or cli.py).
Could you please clarify the following points?
- Out-of-the-box Support:
Without modifying any source code, what AES modes are available by the ssscli encrypt/decrypt commands in the current release (04.07.01)?
Is it limited to AES_CTR? - Alternative Approach:
If I need to use other modes like CBC or GCM without modifying the Python CLI scripts, is the recommended approach to develop a custom application using the C-API?
Or is there another pre-built NXP tool/binary available for evaluating these specific AES modes?
Environment:
Board: MCIMX8M-WEVK and OM-SE051ARD
SoC: i.MX 8M
Linux version: 6.1.151-cip46
Plug & Trust MW version: 04.07.01
Any guidance would be highly appreciated.
Hi @Uc_S ,
Yes, the out of box support by ssscli on AES is just limited to AES_CTR, if you don't want to modify the python code, you have to develop a custom application in C, such as the examples provided within the MW, for example, the demo of ex_sss_symmetric.
Have a great day,
Kan
-------------------------------------------------------------------------------
Note:
- If this post answers your question, please click the "Mark Correct" button. Thank you!
- We are following threads for 7 weeks after the last post, later replies are ignored
Please open a new thread and refer to the closed one, if you have a related question at a later point in time.
-------------------------------------------------------------------------------
Thank you for the clear response.
I completely understand. It is very helpful to know that AES_CTR is the only out-of-the-box supported mode for ssscli.
Based on your advice, we will consider developing a custom C application using the provided examples to implement the other AES modes.